{"vulnerability": "CVE-2025-47527", "sightings": [{"uuid": "070c3a2a-32f9-4ded-a1da-372555ac76d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-47527", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17730", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-47527\n\ud83d\udd25 CVSS Score: 7.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H)\n\ud83d\udd39 Description: Missing Authorization vulnerability in Icegram Icegram Collect \u2013 Easy Form, Lead Collection and Subscription plugin allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Icegram Collect \u2013 Easy Form, Lead Collection and Subscription plugin: from n/a through 1.3.18.\n\ud83d\udccf Published: 2025-06-09T15:54:09.986Z\n\ud83d\udccf Modified: 2025-06-09T17:23:06.702Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/icegram-rainmaker/vulnerability/wordpress-icegram-collect-easy-form-lead-collection-and-subscription-plugin-1-3-18-broken-access-control-vulnerability?_s_id=cve", "creation_timestamp": "2025-06-09T18:11:17.000000Z"}]}