{"vulnerability": "CVE-2025-5238", "sightings": [{"uuid": "a9eebd42-a85b-4970-bf25-685de8f46575", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-523881", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m325ha7lg42t", "content": "", "creation_timestamp": "2025-10-13T02:16:20.807966Z"}, {"uuid": "72fcbbf9-0caa-4e97-99bc-021bb88b2e07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-523881", "type": "seen", "source": "https://bsky.app/profile/discopawbs.bsky.social/post/3m2lrdyjm4c2v", "content": "", "creation_timestamp": "2025-10-07T09:02:30.456704Z"}, {"uuid": "4d58ff75-c069-4d80-8a55-d6016126bf51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-523881", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m2q3cn24522l", "content": "", "creation_timestamp": "2025-10-09T02:11:21.744703Z"}, {"uuid": "cb3cf34e-cfb9-4f93-a5a5-b21a9653ec9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-52389", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lyj4ykswk32p", "content": "", "creation_timestamp": "2025-09-10T21:02:34.550037Z"}, {"uuid": "f73049a0-d612-43f2-b7b8-03bade1bb97b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-52385", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lwhquywast26", "content": "", "creation_timestamp": "2025-08-15T21:02:44.279473Z"}, {"uuid": "ac145466-3eb6-4eb1-9ac5-75dce4e124c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-523881", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m2nkrakfj62f", "content": "", "creation_timestamp": "2025-10-08T02:09:59.024258Z"}, {"uuid": "a44380d6-389e-4a20-92b8-24e39f7deae4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-52389", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lyecws6cnk2a", "content": "", "creation_timestamp": "2025-09-08T23:05:34.026448Z"}, {"uuid": "5bf513a9-f291-4784-9230-7576f802d017", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5238", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrkzvbb5wy2a", "content": "", "creation_timestamp": "2025-06-14T13:15:56.060140Z"}, {"uuid": "2f61cf28-d5e5-4397-96e7-b05c5926d1ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-523881", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m34nnpnc5d2r", "content": "", "creation_timestamp": "2025-10-14T02:11:37.874592Z"}, {"uuid": "36b5eeb6-99bf-4dd8-8aa8-4e40913fbcf5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-52385", "type": "published-proof-of-concept", "source": "Telegram/lGYbLck6G7m7DaRiRxfjxEzwq5qsYzU-Axb6YLGnEcc6ewQ", "content": "", "creation_timestamp": "2025-08-12T21:00:04.000000Z"}, {"uuid": "162288e1-a480-4f4e-8d57-7a8db437250b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-52389", "type": "published-proof-of-concept", "source": "Telegram/Px86r7YM_5uy0nBxKBAOqrEctEXVUS1VfUeJPbvOmBj2WEc", "content": "", "creation_timestamp": "2025-09-07T06:00:05.000000Z"}, {"uuid": "e2d468ac-bff1-4723-a36c-c72d558d0d1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-52389", "type": "seen", "source": "Telegram/xlAko34B3Uyjvd9dQ9fN0_9CnHhdqlACkbJw7g5Gnjlnl2Y", "content": "", "creation_timestamp": "2025-09-04T09:00:05.000000Z"}, {"uuid": "66271dec-2860-4960-9a5d-e9d9b92a2ba9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5238", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18373", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-5238\n\ud83d\udd25 CVSS Score: 6.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: The YITH WooCommerce Wishlist plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018id\u2019 parameter in all versions up to, and including, 4.5.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.\n\ud83d\udccf Published: 2025-06-14T09:23:34.023Z\n\ud83d\udccf Modified: 2025-06-14T09:23:34.023Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/6d4b0434-61ca-47b1-9119-7208283f916f?source=cve\n2. https://plugins.svn.wordpress.org/yith-woocommerce-wishlist/tags/4.5.0/assets/js/unminified/jquery.yith-wcwl.js\n3. https://docs.yithemes.com/yith-woocommerce-wishlist/changelog/changelog-free-version/\n4. https://wordpress.org/plugins/yith-woocommerce-wishlist/#description\n5. https://plugins.trac.wordpress.org/changeset/3310555/", "creation_timestamp": "2025-06-14T09:35:11.000000Z"}]}