{"vulnerability": "CVE-2025-5017", "sightings": [{"uuid": "1addd352-6328-47d8-b953-216067d8f4cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50173", "type": "seen", "source": "https://infosec.exchange/users/0patch/statuses/115462956405570438", "content": "", "creation_timestamp": "2025-10-30T11:48:17.886845Z"}, {"uuid": "67e6ee05-b3ab-4615-bf61-58b26b0cf3d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50173", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3m4g3lcw3b22a", "content": "", "creation_timestamp": "2025-10-30T13:39:59.336173Z"}, {"uuid": "2a94944f-0bb8-4d13-814a-6f1304b5298c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50174", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0310", "content": "", "creation_timestamp": "2025-10-24T06:24:42.000000Z"}, {"uuid": "5115882b-7217-49ee-8334-0475cefc86b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50175", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0310", "content": "", "creation_timestamp": "2025-10-24T06:24:42.000000Z"}, {"uuid": "98782146-2a69-4741-ae6c-67b70814b033", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50173", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3m4gaioemer27", "content": "", "creation_timestamp": "2025-10-30T15:07:59.428800Z"}, {"uuid": "87501014-3566-4f75-8093-409593b19178", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50175", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0310", "content": "", "creation_timestamp": "2025-10-14T16:03:45.000000Z"}, {"uuid": "21c8af85-b598-4dba-8171-051cf24caede", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50174", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0310", "content": "", "creation_timestamp": "2025-10-14T16:03:45.000000Z"}, {"uuid": "8ab8040d-fc86-48d8-8a28-0a1c2fd2412d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50175", "type": "seen", "source": "https://www.thezdi.com/blog/2025/10/14/the-october-2025-security-update-review", "content": "", "creation_timestamp": "2025-10-14T16:38:44.000000Z"}, {"uuid": "aa710ef9-9702-4106-9b6e-9c82fc740c08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50176", "type": "seen", "source": "https://www.thezdi.com/blog/2025/8/12/the-august-2025-security-update-review", "content": "", "creation_timestamp": "2025-08-12T16:01:32.000000Z"}, {"uuid": "4d12d38c-1998-4264-aa63-2e3fcefc4f63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50177", "type": "seen", "source": "https://www.thezdi.com/blog/2025/8/12/the-august-2025-security-update-review", "content": "", "creation_timestamp": "2025-08-12T16:01:32.000000Z"}, {"uuid": "68b0b203-f8cb-4bee-b39c-2519aac0323f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50172", "type": "seen", "source": "https://www.thezdi.com/blog/2025/8/12/the-august-2025-security-update-review", "content": "", "creation_timestamp": "2025-08-12T16:01:32.000000Z"}, {"uuid": "64fa8ca2-8770-4a1a-8f1e-305e42558c84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50173", "type": "seen", "source": "https://www.thezdi.com/blog/2025/8/12/the-august-2025-security-update-review", "content": "", "creation_timestamp": "2025-08-12T16:01:32.000000Z"}, {"uuid": "c9c55e1f-3db7-4fa9-bc6f-8223feb292ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50171", "type": "seen", "source": "https://www.thezdi.com/blog/2025/8/12/the-august-2025-security-update-review", "content": "", "creation_timestamp": "2025-08-12T16:01:32.000000Z"}, {"uuid": "194ebc97-fb73-4735-8bd6-b5705347c9e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50170", "type": "seen", "source": "https://www.thezdi.com/blog/2025/8/12/the-august-2025-security-update-review", "content": "", "creation_timestamp": "2025-08-12T16:01:32.000000Z"}, {"uuid": "4fed914c-ed17-43bb-8d06-67a645b39ef9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-501726", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0251", "content": "", "creation_timestamp": "2025-08-13T05:25:08.000000Z"}, {"uuid": "d113d164-a156-49c0-8000-1e28f282add7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-501767", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0251", "content": "", "creation_timestamp": "2025-08-13T05:25:08.000000Z"}, {"uuid": "f50e22a8-bb83-4095-a003-68be65c332d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-501719", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0251", "content": "", "creation_timestamp": "2025-08-13T05:25:08.000000Z"}, {"uuid": "260705ce-7c75-45f9-8806-351e74f06bde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-501707", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0251", "content": "", "creation_timestamp": "2025-08-13T05:25:08.000000Z"}, {"uuid": "0c24683f-3f91-4c2d-b698-000df1ccd584", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-501778", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0251", "content": "", "creation_timestamp": "2025-08-13T05:25:08.000000Z"}, {"uuid": "2fae188e-543d-4cfa-9c79-b3163af5ca7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-501737", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0251", "content": "", "creation_timestamp": "2025-08-13T05:25:08.000000Z"}, {"uuid": "575f3c5e-faa2-49e5-8154-af5e33344c26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50176", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-ff471c89-9928bd439ee1052f", "content": "", "creation_timestamp": "2025-08-13T11:25:05.786695Z"}, {"uuid": "45ac15d9-7f63-40c9-9c06-9df9e1fe7022", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50177", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-ff471c89-9928bd439ee1052f", "content": "", "creation_timestamp": "2025-08-13T11:25:06.358729Z"}, {"uuid": "e347ae7c-48d6-4a08-8d6a-9504ef1ebfad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50174", "type": "seen", "source": "https://www.thezdi.com/blog/2025/10/14/the-october-2025-security-update-review", "content": "", "creation_timestamp": "2025-10-14T16:38:44.000000Z"}, {"uuid": "a50435bb-3acc-4086-8b4c-7237463a3a4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50174", "type": "seen", "source": "https://bsky.app/profile/secqube.com/post/3m3a272pnrc2a", "content": "", "creation_timestamp": "2025-10-15T10:34:03.897213Z"}, {"uuid": "d9844081-76b3-4f0a-902e-f0760b7e1395", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50173", "type": "seen", "source": "https://bsky.app/profile/jbhall56.bsky.social/post/3lxz3ydwhks2b", "content": "", "creation_timestamp": "2025-09-04T12:01:54.138937Z"}, {"uuid": "3787f97f-1837-48aa-a2ae-41a4acfef2c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50173", "type": "seen", "source": "https://t.me/xakep_ru/18092", "content": "\u0410\u0432\u0433\u0443\u0441\u0442\u043e\u0432\u0441\u043a\u0438\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f Windows \u043c\u043e\u0433\u0443\u0442 \u043f\u0440\u0435\u043f\u044f\u0442\u0441\u0442\u0432\u043e\u0432\u0430\u0442\u044c \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0435 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439\n\n\u0412 Microsoft \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438, \u0447\u0442\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Windows \u0437\u0430 \u0430\u0432\u0433\u0443\u0441\u0442 2025 \u0433\u043e\u0434\u0430 \u043c\u043e\u0433\u0443\u0442 \u0432\u044b\u0437\u044b\u0432\u0430\u0442\u044c \u043d\u0435\u043e\u0436\u0438\u0434\u0430\u043d\u043d\u044b\u0435 \u0437\u0430\u043f\u0440\u043e\u0441\u044b User Account Control (UAC) \u0438 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0441 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439. \u0411\u0430\u0433 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0431\u0435\u0437 \u043f\u0440\u0430\u0432 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 \u0432\u043e \u0432\u0441\u0435\u0445 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u043c\u044b\u0445 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 Windows.\n\nhttps://xakep.ru/2025/09/05/cve-2025-50173-problem/", "creation_timestamp": "2025-09-05T08:33:55.000000Z"}, {"uuid": "7ce3efd9-83d0-46f2-ba31-2fbc61578578", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50178", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/19467", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-50178\n\ud83d\udd25 CVSS Score: 6.6 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U)\n\ud83d\udd39 Description: GitForge.jl is a unified interface for interacting with Git \"forges.\" Versions prior to 0.4.3 lack input validation for user provided values in certain functions. In the `GitForge.get_repo` function for GitHub, the user can provide any string for the owner and repo fields. These inputs are not validated or safely encoded and are sent directly to the server. This means a user can add path traversal patterns like `../` in the input to access any other endpoints on api.github.com that were not intended. Version 0.4.3 contains a patch for the issue. No known workarounds are available.\n\ud83d\udccf Published: 2025-06-25T15:12:24.751Z\n\ud83d\udccf Modified: 2025-06-25T15:20:43.040Z\n\ud83d\udd17 References:\n1. https://github.com/JuliaWeb/GitForge.jl/security/advisories/GHSA-g2xx-229f-3qjm\n2. https://github.com/JuliaWeb/GitForge.jl/pull/50", "creation_timestamp": "2025-06-25T15:52:13.000000Z"}, {"uuid": "18a01d80-97ea-4286-8873-8faece1b0735", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-50179", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/19487", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-50179\n\ud83d\udd25 CVSS Score: 4.6 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L)\n\ud83d\udd39 Description: Tuleap is an Open Source Suite to improve management of software developments and collaboration. An attacker could use a cross-site request forgery vulnerability in Tuleap Community Edition prior to version 16.8.99.1749830289 and Tuleap Enterprise Edition prior to version 16.9-1 to trick victims into changing the canned responses. Tuleap Community Edition 16.8.99.1749830289 and Tuleap Enterprise Edition 16.9-1 contain a patch for the issue.\n\ud83d\udccf Published: 2025-06-25T15:48:24.488Z\n\ud83d\udccf Modified: 2025-06-25T16:00:32.891Z\n\ud83d\udd17 References:\n1. https://github.com/Enalean/tuleap/security/advisories/GHSA-rxpm-g7gw-4mrv\n2. https://github.com/Enalean/tuleap/commit/0f9aab6e3640e892c74c9dfc90ad65fd3aff499e\n3. https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&amp;h=0f9aab6e3640e892c74c9dfc90ad65fd3aff499e\n4. https://tuleap.net/plugins/tracker/?aid=43357", "creation_timestamp": "2025-06-25T16:47:45.000000Z"}, {"uuid": "ea9acdcc-f0b5-4776-ac76-af5b4f614b48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5017", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqe5kan5sc2y", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2025-5017 \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435 Catalyst Connect \u0434\u043b\u044f WordPress: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/67F3F04E-319F-47B2-A110-D28626F3455E", "creation_timestamp": "2026-07-11T07:33:43.378501Z"}, {"uuid": "f94014c6-a72e-4f4b-a974-c53679e916c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5017", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqe5txto562t", "content": "CVE-2025-5017 - Catalyst Connect Zoho CRM Client Portal\nCVE ID : CVE-2025-5017\n \n Published : July 11, 2026, 5:35 a.m. | 1\u00a0hour, 48\u00a0minutes ago\n \n Description : The Catalyst Connect Zoho CRM Client Portal plugin for WordPress is vulnerable to time-based SQL Injection via the \u2018...", "creation_timestamp": "2026-07-11T07:39:09.735859Z"}]}