{"vulnerability": "CVE-2025-6257", "sightings": [{"uuid": "afcd01bd-850c-400b-ae07-33dc964f39c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62577", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3m3merpyxz22n", "content": "", "creation_timestamp": "2025-10-20T08:15:28.670417Z"}, {"uuid": "df3f5864-714e-44ab-9f00-f32571ab4521", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-6257", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrzqwbjxpt2o", "content": "", "creation_timestamp": "2025-06-20T09:45:22.100160Z"}, {"uuid": "f219bffc-fd05-4045-81b2-02b90192fda2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62575", "type": "seen", "source": "https://bsky.app/profile/blackwiremedia.bsky.social/post/3m72sc7m7zc2g", "content": "", "creation_timestamp": "2025-12-03T06:10:08.350318Z"}, {"uuid": "304e9ad2-da4b-4afb-9fa0-c804fb86ea40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-62577", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3m3m5jqtxig2i", "content": "", "creation_timestamp": "2025-10-20T06:05:41.470434Z"}, {"uuid": "214845fc-d9ad-43ef-a444-2081eaca893c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62579", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-296-04", "content": "", "creation_timestamp": "2025-10-23T10:00:00.000000Z"}, {"uuid": "6c096bd3-e11f-4c7a-8c19-93aca727cd1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62577", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3mck3l72d2o", "content": "", "creation_timestamp": "2025-10-20T07:35:20.399060Z"}, {"uuid": "96fbae6b-be22-466c-a7cf-279f34724bdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62579", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-977/", "content": "", "creation_timestamp": "2025-10-29T04:00:00.000000Z"}, {"uuid": "89b710fe-cf4c-44af-b30a-3acb988bda10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62575", "type": "seen", "source": "https://gist.github.com/Darkcrai86/61cfb0b7823317e3619ec7a2c6465b58", "content": "", "creation_timestamp": "2025-12-03T07:42:50.000000Z"}, {"uuid": "cf87fd7f-422c-444d-8d76-2129086843a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62575", "type": "seen", "source": "https://gist.github.com/Darkcrai86/45d04b5d94a6813a7a7567c558cbc3d1", "content": "", "creation_timestamp": "2025-12-03T08:03:29.000000Z"}, {"uuid": "9810d324-8c5f-4cba-a0e1-dad93af47c15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-6257", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18917", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-6257\n\ud83d\udd25 CVSS Score: 6.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: The Euro FxRef Currency Converter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's currency shortcode in all versions up to, and including, 2.0.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.\n\ud83d\udccf Published: 2025-06-20T08:22:08.666Z\n\ud83d\udccf Modified: 2025-06-20T08:22:08.666Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/e7637e96-3afe-46af-b99d-70abe9ca3e20?source=cve\n2. https://wordpress.org/plugins/euro-fxref-currency-converter/#developers\n3. https://github.com/joostdekeijzer/wp_eurofxref/commit/131108428f0d88dab1070048350bdd54f10c36a0\n4. https://plugins.trac.wordpress.org/changeset/3314562", "creation_timestamp": "2025-06-20T08:40:45.000000Z"}, {"uuid": "382c6b9e-a3c3-46fc-b1fc-f8f9c6b9dd2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62572", "type": "seen", "source": "https://www.thezdi.com/blog/2025/12/9/the-december-2025-security-update-review", "content": "", "creation_timestamp": "2025-12-09T17:29:16.000000Z"}, {"uuid": "39ac9b60-e2b8-40c8-a278-fee6d87db733", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62573", "type": "seen", "source": "https://www.thezdi.com/blog/2025/12/9/the-december-2025-security-update-review", "content": "", "creation_timestamp": "2025-12-09T17:29:16.000000Z"}, {"uuid": "44882b12-7945-4843-b038-175fbd4a87d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62570", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0383", "content": "", "creation_timestamp": "2025-12-09T17:39:18.000000Z"}, {"uuid": "1ff33136-853a-4baa-9408-81e872b9e54f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62570", "type": "seen", "source": "https://www.thezdi.com/blog/2025/12/9/the-december-2025-security-update-review", "content": "", "creation_timestamp": "2025-12-09T17:29:16.000000Z"}, {"uuid": "86aa7ca7-5155-486b-aa53-492d703672db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62571", "type": "seen", "source": "https://www.thezdi.com/blog/2025/12/9/the-december-2025-security-update-review", "content": "", "creation_timestamp": "2025-12-09T17:29:16.000000Z"}, {"uuid": "c3f1578d-085d-4a6b-9d65-c72e30361f42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62573", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0383", "content": "", "creation_timestamp": "2025-12-09T17:39:18.000000Z"}, {"uuid": "e080ddbd-c32c-4b1e-a461-a28e937257b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62571", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0383", "content": "", "creation_timestamp": "2025-12-09T17:39:18.000000Z"}, {"uuid": "a0f81ead-bd7d-4a1e-98f4-54f7d98094a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62572", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0383", "content": "", "creation_timestamp": "2025-12-09T17:39:18.000000Z"}, {"uuid": "a3051acf-036f-414d-aeaa-57be9379a454", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-62578", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/115784474565121976", "content": "", "creation_timestamp": "2025-12-26T06:34:36.721452Z"}, {"uuid": "3916d3a0-0abf-4c43-9051-e72db92b476b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62578", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mauvsmrixu2q", "content": "", "creation_timestamp": "2025-12-26T08:47:24.396171Z"}, {"uuid": "494cac75-3a71-44a3-803b-83e6e4987e26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62578", "type": "published-proof-of-concept", "source": "Telegram/g1IPI13McdamF9_s4gJnvYvOCv2XOEDkNjK_8-C2_vZIPKI", "content": "", "creation_timestamp": "2026-01-08T23:06:17.000000Z"}]}