{"vulnerability": "CVE-2025-5302", "sightings": [{"uuid": "9368b641-2b29-41e8-a1e5-36d6d69d3dab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53020", "type": "seen", "source": "https://bsky.app/profile/omo.bsky.social/post/3ltnpxyrxfk2s", "content": "", "creation_timestamp": "2025-07-11T01:46:56.103375Z"}, {"uuid": "d52019fb-3c2e-4ec4-aa4e-23a2b5e60e03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53020", "type": "seen", "source": "https://seclists.org/oss-sec/2025/q3/28", "content": "", "creation_timestamp": "2025-07-10T16:00:10.000000Z"}, {"uuid": "0be4d858-3ad9-43ce-98ae-28ba665e9a40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53028", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-600/", "content": "", "creation_timestamp": "2025-07-15T03:00:00.000000Z"}, {"uuid": "feec4195-9fb3-47bb-a7a5-3208d57db0ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53026", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-599/", "content": "", "creation_timestamp": "2025-07-15T03:00:00.000000Z"}, {"uuid": "51cab9d5-6e97-4039-9d96-dc7cc4acc7ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53025", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-598/", "content": "", "creation_timestamp": "2025-07-15T03:00:00.000000Z"}, {"uuid": "1dc71af4-e6ea-4707-89e2-dfba22605475", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53021", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lsf6lsp7u72a", "content": "", "creation_timestamp": "2025-06-24T22:49:20.671298Z"}, {"uuid": "6b4f6016-2a40-4898-9290-10fe14ac0d7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53027", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-602/", "content": "", "creation_timestamp": "2025-07-15T03:00:00.000000Z"}, {"uuid": "e1a042df-833e-47ea-93fb-357f9402628d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53024", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-601/", "content": "", "creation_timestamp": "2025-07-15T03:00:00.000000Z"}, {"uuid": "887f21d3-d1b7-4cb3-af2c-52fb88f86c1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53020", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114851894628715217", "content": "", "creation_timestamp": "2025-07-14T13:47:14.468931Z"}, {"uuid": "66c1440a-7e1f-4887-8d07-d38fbb8fc526", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53020", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114830011674092966", "content": "", "creation_timestamp": "2025-07-10T17:02:07.894883Z"}, {"uuid": "676217d4-d8c5-4b2e-8924-e677a08d08c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53020", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ltmy33qttq2o", "content": "", "creation_timestamp": "2025-07-10T18:39:07.211499Z"}, {"uuid": "3900426a-0623-4cd8-88db-7d6613f09c87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53020", "type": "published-proof-of-concept", "source": "Telegram/CGx8SegN-49RVeuavtq3Jo8Ts2xr-V3iQ0C2UE4RT_zZzg8", "content": "", "creation_timestamp": "2026-01-12T15:00:08.000000Z"}, {"uuid": "b0d2e878-30ec-4fab-8131-6762058f1133", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53024", "type": "seen", "source": "MISP/e0a0042d-e47b-4875-b781-99d4428af3c2", "content": "", "creation_timestamp": "2025-09-09T20:51:36.000000Z"}, {"uuid": "fa7891b7-d997-4ab7-a3e0-575349515040", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53029", "type": "seen", "source": "MISP/e0a0042d-e47b-4875-b781-99d4428af3c2", "content": "", "creation_timestamp": "2025-09-09T20:51:36.000000Z"}, {"uuid": "8884defa-279d-4323-b9a1-9344ab837d99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53022", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lv7kbheuf626", "content": "", "creation_timestamp": "2025-07-30T21:17:54.462946Z"}, {"uuid": "24c6d584-d2ef-4745-a9ce-7801c6e27fbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5302", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lxbc6bbpi42q", "content": "", "creation_timestamp": "2025-08-26T00:48:40.152423Z"}, {"uuid": "f61bc8a3-583a-4543-bd6d-01f34a81d13b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53021", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/19393", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-53021\n\ud83d\udd25 CVSS Score: 4.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N)\n\ud83d\udd39 Description: A session fixation vulnerability in Moodle 3.x through 3.11.18 allows unauthenticated attackers to hijack user sessions via the sesskey parameter. The sesskey can be obtained without authentication and reused within the OAuth2 login flow, resulting in the victim's session being linked to the attacker's. Successful exploitation results in full account takeover. According to the Moodle Releases page, \"Bug fixes for security issues in 3.11.x ended 11 December 2023.\" NOTE: This vulnerability only affects products that are no longer supported by the maintainer.\n\ud83d\udccf Published: 2025-06-24T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-24T19:22:54.821Z\n\ud83d\udd17 References:\n1. https://rentry.co/moodle-oauth2-cve\n2. https://github.com/moodle/moodle/releases/tag/v3.11.18\n3. https://moodledev.io/general/releases#moodle-311", "creation_timestamp": "2025-06-24T19:47:23.000000Z"}]}