{"vulnerability": "CVE-2025-5938", "sightings": [{"uuid": "498e194d-c453-4ac8-a86a-4db78d2867e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5938", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrhoeb6taj2k", "content": "", "creation_timestamp": "2025-06-13T05:11:35.219074Z"}, {"uuid": "ec11b8ff-f4e2-496a-bbb3-d1ff6ccf3658", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59383", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mhqc3gk4px2k", "content": "", "creation_timestamp": "2026-03-23T14:40:07.410440Z"}, {"uuid": "48d53d1a-d9d5-4b06-a7a7-ab8d738ca996", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59384", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mbhgzjvezu2o", "content": "", "creation_timestamp": "2026-01-02T17:43:25.019333Z"}, {"uuid": "947d6227-b9c9-4727-8d61-bb96e3e6e6c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59384", "type": "seen", "source": "https://gist.github.com/alon710/8db1c2154e2dce3105dc997ef8c57297", "content": "", "creation_timestamp": "2026-01-24T21:30:49.000000Z"}, {"uuid": "d50217c1-7841-4d21-94b6-55abd6a6960f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59384", "type": "seen", "source": "https://gist.github.com/alon710/a046c1bed7dbd6e31aea2f1d52207e9d", "content": "", "creation_timestamp": "2026-01-24T21:30:49.000000Z"}, {"uuid": "d985fda1-2fc7-4b37-8a81-4fcc79995e6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59387", "type": "seen", "source": "Telegram/guHHmyvoy-6slTWOk0lscaybhLQRVuwB2X4Pgg0KWuUC6I8", "content": "", "creation_timestamp": "2026-01-02T21:56:58.000000Z"}, {"uuid": "6ccee457-0ae6-4132-ab23-43611695299e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59384", "type": "seen", "source": "Telegram/guHHmyvoy-6slTWOk0lscaybhLQRVuwB2X4Pgg0KWuUC6I8", "content": "", "creation_timestamp": "2026-01-02T21:56:58.000000Z"}, {"uuid": "f5e4c579-358e-45cb-b48d-d15b05a9ae8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59383", "type": "published-proof-of-concept", "source": "Telegram/v04jgzFs_dRRg0faEVT7MCYFvzaiVamBu-2mRXh2qzS6BJs", "content": "", "creation_timestamp": "2026-04-14T03:16:35.000000Z"}, {"uuid": "3e8ed4b6-a284-462c-9f95-d1bd9d9a83e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59384", "type": "seen", "source": "Telegram/fKGzgPxm4HdOPbxQ-IlBp8HZpa9Z_U7wv577tZMC_QId7qg", "content": "", "creation_timestamp": "2026-01-02T18:54:57.000000Z"}, {"uuid": "ab547b73-a286-4213-a378-ef1f3e7652b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59389", "type": "seen", "source": "https://t.me/ics_cert/1382", "content": "\ud83d\ude06QNAP\u0647\u0641\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0631\u0648\u0632 \u0635\u0641\u0631 \u0631\u0627 \u067e\u0633 \u0627\u0632 \u0646\u0645\u0627\u06cc\u0634 \u062f\u0631 \u0645\u0633\u0627\u0628\u0642\u0627\u062a Pwn2Own 2025 \u0648\u0635\u0644\u0647 \u06a9\u0631\u062f\n\nQNAP\u060c \u062a\u0648\u0644\u06cc\u062f\u06a9\u0646\u0646\u062f\u0647 \u062a\u0627\u06cc\u0648\u0627\u0646\u06cc\u060c \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0627\u0636\u0637\u0631\u0627\u0631\u06cc \u0631\u0627 \u0645\u0646\u062a\u0634\u0631 \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0647\u0641\u062a \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0648\u0632 \u0635\u0641\u0631 \u0631\u0627 \u06a9\u0647 \u062f\u0631 \u0645\u0633\u0627\u0628\u0642\u0627\u062a Pwn2Own \u0627\u06cc\u0631\u0644\u0646\u062f 2025 \u0646\u0634\u0627\u0646 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c \u0648\u0635\u0644\u0647 \u0645\u06cc\u200c\u06a9\u0646\u062f.\n\n\u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0646\u0647 \u062a\u0646\u0647\u0627 \u06cc\u06a9 \u0645\u062d\u0635\u0648\u0644\u060c \u0628\u0644\u06a9\u0647 \u06a9\u0644 \u0627\u06a9\u0648\u0633\u06cc\u0633\u062a\u0645 \u06a9\u06cc\u0648 \u0627\u0646 \u0627\u06cc \u067e\u06cc\u060c \u0627\u0632 \u062c\u0645\u0644\u0647 QTS\u060c QuTS hero\u060c \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631 \u067e\u0634\u062a\u06cc\u0628\u0627\u0646\u200c\u06af\u06cc\u0631\u06cc (HBS 3 Hybrid Backup Sync)\u060c \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631 \u062d\u0641\u0627\u0638\u062a \u0627\u0632 \u062f\u0627\u062f\u0647\u200c\u0647\u0627 (Hyper Data Protector) \u0648 \u062d\u062a\u06cc \u0627\u0633\u06a9\u0646\u0631 \u0622\u0646\u062a\u06cc \u0648\u06cc\u0631\u0648\u0633 (Malware Remover) \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u062f\u0647\u0646\u062f.\n\n\ud83d\udee1 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631 (\u0646\u06cc\u0627\u0632\u0645\u0646\u062f \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0641\u0648\u0631\u06cc):\n\n\u25aa\ufe0fHyper Data Protector: \u062a\u0645\u0627\u0645 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0642\u0628\u0644 \u0627\u0632 \u06f2.\u06f2.\u06f4.\u06f1 (CVE-2025-59389)\n\u25aa\ufe0fMalware Remover: \u062a\u0645\u0627\u0645 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0642\u0628\u0644 \u0627\u0632 \u06f6.\u06f6.\u06f8.\u06f2\u06f0\u06f2\u06f5\u06f1\u06f0\u06f2\u06f3 (CVE-2025-11837)\n\u25aa\ufe0fHBS 3 Hybrid Backup Sync: \u062a\u0645\u0627\u0645 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0642\u0628\u0644 \u0627\u0632 \u06f2\u06f6.\u06f2.\u06f0.\u06f9\u06f3\u06f8 (CVE-2025-62840\u060c CVE-2025-62842)\n\u25aa\ufe0fQTS 5.2.7: \u062a\u0645\u0627\u0645 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0642\u0628\u0644 \u0627\u0632 \u0633\u0627\u062e\u062a \u06f2\u06f0\u06f2\u06f5\u06f1\u06f0\u06f2\u06f4 (CVE-2025-62847\u060c CVE-2025-62848\u060c CVE-2025-62849)\n\u25aa\ufe0fQuTS hero h5.2.7: \u0647\u0645\u0647 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0642\u0628\u0644 \u0627\u0632 \u0633\u0627\u062e\u062a \u06f2\u06f0\u06f2\u06f5\u06f1\u06f0\u06f2\u06f4 (CVE-2025-62847\u060c CVE-2025-62848\u060c CVE-2025-62849)\n\u25aa\ufe0fQuTS hero h5.3.1: \u062a\u0645\u0627\u0645 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0642\u0628\u0644 \u0627\u0632 \u0633\u0627\u062e\u062a \u06f2\u06f0\u06f2\u06f5\u06f1\u06f0\u06f2\u06f4 (CVE-2025-62847\u060c CVE-2025-62848\u060c CVE-2025-62849)\n\n\u0647\u0631 \u0647\u0641\u062a \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0648\u0633\u0637 \u062a\u06cc\u0645 Summoning\u060c DEVCORE\u060c \u062a\u06cc\u0645 DDOS \u0648 \u06cc\u06a9 \u06a9\u0627\u0631\u0622\u0645\u0648\u0632 \u0627\u0632 CyCraft technology \u0646\u0634\u0627\u0646 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a.\n\n\ud83d\udc46QNAP \u0627\u06a9\u06cc\u062f\u0627\u064b \u0628\u0647 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u06a9\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0622\u062e\u0631\u06cc\u0646 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u06a9\u0646\u0646\u062f.\n\n\ud83d\udca1\u0627\u06af\u0631 \u0627\u06cc\u0646 \u0645\u062a\u0646 \u062f\u06cc\u062f\u06af\u0627\u0647 \u0634\u0645\u0627 \u0631\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0627\u062f\u060c \u0628\u0627\u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0628\u0647 \u0627\u0634\u062a\u0631\u0627\u06a9 \u0628\u06af\u0630\u0627\u0631\u06cc\u062f. \n\ud83c\udfed\u00a0 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n@pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u06af\u0631\u0648\u0647 \u062a\u0644\u06af\u0631\u0627\u0645 :\nhttps://t.me/ICSCERT_IR\n\u0627\u06cc\u062a\u0627:\nhttps://eitaa.com/joinchat/1866007784Cfd023f90b2\n\u06af\u0631\u0648\u0647 \u062a\u062e\u0635\u0635\u06cc \u0648\u0627\u062a\u0633 \u0627\u067e:\nhttps://chat.whatsapp.com/BZu1yr1aeHpCDxiIXotzyW?mode=ac_t\n\u0628\u0647 \u0627\u0646\u062c\u0645\u0646 \u062a\u062e\u0635\u0635\u06cc AI.Sec \u0628\u067e\u06cc\u0648\u0646\u062f\u06cc\u062f:\nhttps://chat.whatsapp.com/KRPUA6WM4f6AdS727vRBmM?mode=ems_copy_t", "creation_timestamp": "2025-12-30T05:34:04.000000Z"}, {"uuid": "f182abea-4d87-44f6-86f8-56093d520683", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59389", "type": "seen", "source": "Telegram/fKGzgPxm4HdOPbxQ-IlBp8HZpa9Z_U7wv577tZMC_QId7qg", "content": "", "creation_timestamp": "2026-01-02T18:54:57.000000Z"}, {"uuid": "71e110d2-1ffa-4090-aab8-42b5ce684a77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59387", "type": "seen", "source": "Telegram/fKGzgPxm4HdOPbxQ-IlBp8HZpa9Z_U7wv577tZMC_QId7qg", "content": "", "creation_timestamp": "2026-01-02T18:54:57.000000Z"}, {"uuid": "9d753273-0b34-427d-b6f1-6040eb88286c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59389", "type": "seen", "source": "Telegram/guHHmyvoy-6slTWOk0lscaybhLQRVuwB2X4Pgg0KWuUC6I8", "content": "", "creation_timestamp": "2026-01-02T21:56:58.000000Z"}, {"uuid": "4963dc94-6f19-418e-b1a9-0e92b1f19378", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5938", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18245", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-5938\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: The Digital Marketing and Agency Templates Addons for Elementor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.1. This is due to missing or incorrect nonce validation on the import_templates() function. This makes it possible for unauthenticated attackers to trigger an import via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.\n\ud83d\udccf Published: 2025-06-13T01:47:50.908Z\n\ud83d\udccf Modified: 2025-06-13T01:47:50.908Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/e3447438-1624-451a-a50c-981021399198?source=cve\n2. https://plugins.trac.wordpress.org/browser/digital-marketing-agency-templates-for-elementor/trunk/includes/importer.php#L242", "creation_timestamp": "2025-06-13T02:33:58.000000Z"}]}