{"vulnerability": "CVE-2025-4987", "sightings": [{"uuid": "b9eaffad-381b-4587-acbf-4dab7d7fdcd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49875", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrt2ruyizj2r", "content": "", "creation_timestamp": "2025-06-17T17:53:14.129269Z"}, {"uuid": "0f0e5380-bc5f-4dfd-9b55-eb361b55b0bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49872", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrt2yfwyov23", "content": "", "creation_timestamp": "2025-06-17T17:56:53.113032Z"}, {"uuid": "a3244048-806b-49cd-ae1c-a83c859b21d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49874", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrt3ssy6r225", "content": "", "creation_timestamp": "2025-06-17T18:11:39.337443Z"}, {"uuid": "ead82d92-c4c1-48ac-a476-0d19e7b25767", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49877", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrt3ys2xtz2s", "content": "", "creation_timestamp": "2025-06-17T18:14:59.593049Z"}, {"uuid": "dd508f11-2553-4ef5-9e43-154081ee408d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49879", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrt47ix64n2k", "content": "", "creation_timestamp": "2025-06-17T18:18:45.027847Z"}, {"uuid": "3bb41012-c5e8-47c6-8e70-4b1d613916cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49871", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrt4z6tozl2k", "content": "", "creation_timestamp": "2025-06-17T18:33:07.300093Z"}, {"uuid": "2a9f7525-0b36-4da9-b7e0-dabc9867b9e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49878", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrt5u24okt23", "content": "", "creation_timestamp": "2025-06-17T18:48:08.056142Z"}, {"uuid": "00b39bfb-8088-4393-bba9-745d25460efa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4987", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrpvgkiw562p", "content": "", "creation_timestamp": "2025-06-16T11:39:26.014732Z"}, {"uuid": "521ebe43-09d7-44ac-8b79-4c26ac4c431e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49870", "type": "seen", "source": "https://bsky.app/profile/technadu.com/post/3lxtvqdvikc2b", "content": "", "creation_timestamp": "2025-09-02T10:26:52.873094Z"}, {"uuid": "0c242473-d370-487c-8157-80b368561250", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49870", "type": "seen", "source": "https://bsky.app/profile/checkmarxzero.bsky.social/post/3lxuzl3wg3k2g", "content": "", "creation_timestamp": "2025-09-02T21:08:02.805320Z"}, {"uuid": "5cac5ec2-3ee1-4522-92fe-d69e66dd61f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4987", "type": "seen", "source": "Telegram/hhE1kvHYn50YF9ITd08r17gO2bCrexDC4qivf0bR_BnQXvg", "content": "", "creation_timestamp": "2025-06-16T08:03:04.000000Z"}, {"uuid": "c45c79e5-44fe-44dd-b956-fba8aef0ca63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49879", "type": "seen", "source": "Telegram/VViQQA05ZTfWMIgnP1njeoZjb6_CaMk4xQkJ0gjICjaj4YA", "content": "", "creation_timestamp": "2025-06-17T16:18:04.000000Z"}, {"uuid": "104a3157-4e1d-41d6-a07c-d96636460627", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49873", "type": "seen", "source": "Telegram/AEB12iQ2dPbaMPDGvzsrZhLVTqEGR_7XpBf0du0psDHp5E4", "content": "", "creation_timestamp": "2025-06-20T16:17:37.000000Z"}, {"uuid": "b80ee830-91de-45b8-981b-ead144fae923", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4987", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18421", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-4987\n\ud83d\udd25 CVSS Score: 8.7 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N)\n\ud83d\udd39 Description: A stored Cross-site Scripting (XSS) vulnerability affecting Opportunity Management in Project Portfolio Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.\n\ud83d\udccf Published: 2025-06-16T07:22:02.131Z\n\ud83d\udccf Modified: 2025-06-16T07:22:02.131Z\n\ud83d\udd17 References:\n1. https://www.3ds.com/vulnerability/advisories", "creation_timestamp": "2025-06-16T07:36:31.000000Z"}, {"uuid": "a5378a2e-1895-4152-855d-39a1b329ddd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49871", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18947", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-49871\n\ud83d\udd25 CVSS Score: 5.9 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brian Mutende Noptin allows Stored XSS. This issue affects Noptin: from n/a through 3.8.7.\n\ud83d\udccf Published: 2025-06-17T15:01:16.540Z\n\ud83d\udccf Modified: 2025-06-20T13:13:52.063Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/newsletter-optin-box/vulnerability/wordpress-noptin-plugin-3-8-7-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-06-20T13:43:04.000000Z"}, {"uuid": "77b1394a-3b95-4925-a916-bbe935c05d7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49872", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18946", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-49872\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: Missing Authorization vulnerability in WPExperts.io myCred allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects myCred: from n/a through 2.9.4.2.\n\ud83d\udccf Published: 2025-06-17T15:01:16.048Z\n\ud83d\udccf Modified: 2025-06-20T13:13:57.657Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/mycred/vulnerability/wordpress-mycred-plugin-2-9-4-2-broken-access-control-vulnerability-2?_s_id=cve", "creation_timestamp": "2025-06-20T13:43:00.000000Z"}, {"uuid": "7db72e39-e786-4160-b567-36d0da1297b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49874", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18945", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-49874\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: Missing Authorization vulnerability in tychesoftwares Arconix FAQ allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Arconix FAQ: from n/a through 1.9.6.\n\ud83d\udccf Published: 2025-06-17T15:01:15.593Z\n\ud83d\udccf Modified: 2025-06-20T13:14:04.589Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/arconix-faq/vulnerability/wordpress-arconix-faq-plugin-1-9-6-broken-access-control-vulnerability?_s_id=cve", "creation_timestamp": "2025-06-20T13:43:00.000000Z"}]}