From 27b8a65f957775be2db71b89b9c01419d5e8cc36 Mon Sep 17 00:00:00 2001
From: CVE Team <cve-request@mitre.org>
Date: Wed, 16 Apr 2025 13:00:32 +0000
Subject: [PATCH] "-Synchronized-Data."

---
 2025/1xxx/CVE-2025-1980.json   |  97 ++++++++++++++++++++++++++--
 2025/1xxx/CVE-2025-1981.json   |  84 ++++++++++++++++++++++--
 2025/1xxx/CVE-2025-1982.json   |  84 ++++++++++++++++++++++--
 2025/1xxx/CVE-2025-1983.json   |  84 ++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39543.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39544.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39545.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39546.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39547.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39548.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39549.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39552.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39555.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39556.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39557.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39560.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39563.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39564.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39565.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39566.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39570.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39571.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39572.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39573.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39574.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39575.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39576.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39577.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39578.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39579.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39581.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39582.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39584.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39585.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39589.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39590.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39591.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39592.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39593.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39597.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39598.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39599.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39600.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39601.json | 113 ++++++++++++++++++++++++++++++--
 2025/39xxx/CVE-2025-39602.json | 113 ++++++++++++++++++++++++++++++--
 2025/3xxx/CVE-2025-3687.json   | 109 +++++++++++++++++++++++++++++--
 2025/3xxx/CVE-2025-3688.json   | 109 +++++++++++++++++++++++++++++--
 2025/3xxx/CVE-2025-3689.json   | 114 +++++++++++++++++++++++++++++++--
 2025/3xxx/CVE-2025-3721.json   |  18 ++++++
 2025/42xxx/CVE-2025-42600.json |  18 ++++++
 2025/42xxx/CVE-2025-42601.json |  18 ++++++
 2025/42xxx/CVE-2025-42602.json |  18 ++++++
 2025/42xxx/CVE-2025-42603.json |  18 ++++++
 2025/42xxx/CVE-2025-42604.json |  18 ++++++
 2025/42xxx/CVE-2025-42605.json |  18 ++++++
 2025/42xxx/CVE-2025-42606.json |  18 ++++++
 2025/42xxx/CVE-2025-42607.json |  18 ++++++
 2025/42xxx/CVE-2025-42608.json |  18 ++++++
 2025/42xxx/CVE-2025-42609.json |  18 ++++++
 2025/42xxx/CVE-2025-42610.json |  18 ++++++
 2025/42xxx/CVE-2025-42611.json |  18 ++++++
 2025/42xxx/CVE-2025-42612.json |  18 ++++++
 2025/42xxx/CVE-2025-42613.json |  18 ++++++
 2025/42xxx/CVE-2025-42614.json |  18 ++++++
 2025/42xxx/CVE-2025-42615.json |  18 ++++++
 2025/42xxx/CVE-2025-42616.json |  18 ++++++
 2025/42xxx/CVE-2025-42617.json |  18 ++++++
 2025/42xxx/CVE-2025-42618.json |  18 ++++++
 2025/42xxx/CVE-2025-42619.json |  18 ++++++
 2025/42xxx/CVE-2025-42620.json |  18 ++++++
 2025/42xxx/CVE-2025-42621.json |  18 ++++++
 2025/42xxx/CVE-2025-42622.json |  18 ++++++
 2025/42xxx/CVE-2025-42623.json |  18 ++++++
 2025/42xxx/CVE-2025-42624.json |  18 ++++++
 2025/42xxx/CVE-2025-42625.json |  18 ++++++
 2025/42xxx/CVE-2025-42626.json |  18 ++++++
 2025/42xxx/CVE-2025-42627.json |  18 ++++++
 2025/42xxx/CVE-2025-42628.json |  18 ++++++
 2025/42xxx/CVE-2025-42629.json |  18 ++++++
 2025/42xxx/CVE-2025-42630.json |  18 ++++++
 2025/42xxx/CVE-2025-42631.json |  18 ++++++
 2025/42xxx/CVE-2025-42632.json |  18 ++++++
 2025/42xxx/CVE-2025-42633.json |  18 ++++++
 2025/42xxx/CVE-2025-42634.json |  18 ++++++
 2025/42xxx/CVE-2025-42635.json |  18 ++++++
 2025/42xxx/CVE-2025-42636.json |  18 ++++++
 2025/42xxx/CVE-2025-42637.json |  18 ++++++
 2025/42xxx/CVE-2025-42638.json |  18 ++++++
 2025/42xxx/CVE-2025-42639.json |  18 ++++++
 2025/42xxx/CVE-2025-42640.json |  18 ++++++
 2025/42xxx/CVE-2025-42641.json |  18 ++++++
 2025/42xxx/CVE-2025-42642.json |  18 ++++++
 2025/42xxx/CVE-2025-42643.json |  18 ++++++
 2025/42xxx/CVE-2025-42644.json |  18 ++++++
 2025/42xxx/CVE-2025-42645.json |  18 ++++++
 2025/42xxx/CVE-2025-42646.json |  18 ++++++
 96 files changed, 5982 insertions(+), 196 deletions(-)
 create mode 100644 2025/3xxx/CVE-2025-3721.json
 create mode 100644 2025/42xxx/CVE-2025-42600.json
 create mode 100644 2025/42xxx/CVE-2025-42601.json
 create mode 100644 2025/42xxx/CVE-2025-42602.json
 create mode 100644 2025/42xxx/CVE-2025-42603.json
 create mode 100644 2025/42xxx/CVE-2025-42604.json
 create mode 100644 2025/42xxx/CVE-2025-42605.json
 create mode 100644 2025/42xxx/CVE-2025-42606.json
 create mode 100644 2025/42xxx/CVE-2025-42607.json
 create mode 100644 2025/42xxx/CVE-2025-42608.json
 create mode 100644 2025/42xxx/CVE-2025-42609.json
 create mode 100644 2025/42xxx/CVE-2025-42610.json
 create mode 100644 2025/42xxx/CVE-2025-42611.json
 create mode 100644 2025/42xxx/CVE-2025-42612.json
 create mode 100644 2025/42xxx/CVE-2025-42613.json
 create mode 100644 2025/42xxx/CVE-2025-42614.json
 create mode 100644 2025/42xxx/CVE-2025-42615.json
 create mode 100644 2025/42xxx/CVE-2025-42616.json
 create mode 100644 2025/42xxx/CVE-2025-42617.json
 create mode 100644 2025/42xxx/CVE-2025-42618.json
 create mode 100644 2025/42xxx/CVE-2025-42619.json
 create mode 100644 2025/42xxx/CVE-2025-42620.json
 create mode 100644 2025/42xxx/CVE-2025-42621.json
 create mode 100644 2025/42xxx/CVE-2025-42622.json
 create mode 100644 2025/42xxx/CVE-2025-42623.json
 create mode 100644 2025/42xxx/CVE-2025-42624.json
 create mode 100644 2025/42xxx/CVE-2025-42625.json
 create mode 100644 2025/42xxx/CVE-2025-42626.json
 create mode 100644 2025/42xxx/CVE-2025-42627.json
 create mode 100644 2025/42xxx/CVE-2025-42628.json
 create mode 100644 2025/42xxx/CVE-2025-42629.json
 create mode 100644 2025/42xxx/CVE-2025-42630.json
 create mode 100644 2025/42xxx/CVE-2025-42631.json
 create mode 100644 2025/42xxx/CVE-2025-42632.json
 create mode 100644 2025/42xxx/CVE-2025-42633.json
 create mode 100644 2025/42xxx/CVE-2025-42634.json
 create mode 100644 2025/42xxx/CVE-2025-42635.json
 create mode 100644 2025/42xxx/CVE-2025-42636.json
 create mode 100644 2025/42xxx/CVE-2025-42637.json
 create mode 100644 2025/42xxx/CVE-2025-42638.json
 create mode 100644 2025/42xxx/CVE-2025-42639.json
 create mode 100644 2025/42xxx/CVE-2025-42640.json
 create mode 100644 2025/42xxx/CVE-2025-42641.json
 create mode 100644 2025/42xxx/CVE-2025-42642.json
 create mode 100644 2025/42xxx/CVE-2025-42643.json
 create mode 100644 2025/42xxx/CVE-2025-42644.json
 create mode 100644 2025/42xxx/CVE-2025-42645.json
 create mode 100644 2025/42xxx/CVE-2025-42646.json

diff --git a/2025/1xxx/CVE-2025-1980.json b/2025/1xxx/CVE-2025-1980.json
index 543075c4083..b07bfa005d7 100644
--- a/2025/1xxx/CVE-2025-1980.json
+++ b/2025/1xxx/CVE-2025-1980.json
@@ -1,18 +1,105 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-1980",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "cvd@cert.pl",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "The Ready_ application's Profile section allows users to upload files of any type and extension without restriction. If the server is misconfigured, as it was by default when installed at the turn of 2021 and 2022, it can result in Remote Code Execution. Refer to the Required Configuration for Exposure section for more information."
             }
         ]
-    }
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-434 Unrestricted Upload of File with Dangerous Type",
+                        "cweId": "CWE-434"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Symfonia",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Ready_",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_affected": "<=",
+                                            "version_name": "7.0.0.0",
+                                            "version_value": "7.19.39.23"
+                                        },
+                                        {
+                                            "version_affected": "<=",
+                                            "version_name": "8.0.0.0",
+                                            "version_value": "8.0.2.3"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://cert.pl/posts/2025/04/CVE-2025-1980",
+                "refsource": "MISC",
+                "name": "https://cert.pl/posts/2025/04/CVE-2025-1980"
+            },
+            {
+                "url": "https://cert.pl/en/posts/2025/04/CVE-2025-1980",
+                "refsource": "MISC",
+                "name": "https://cert.pl/en/posts/2025/04/CVE-2025-1980"
+            },
+            {
+                "url": "https://ready-os.com/pl/",
+                "refsource": "MISC",
+                "name": "https://ready-os.com/pl/"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "configuration": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Impacted instances are those whose PHP files stored in <span style=\"background-color: rgb(255, 255, 255);\">public_html/apps/edokumenty/var&nbsp;</span>can be executed. <br>This can be simply checked using the following temporary PHP file:<br><tt><tt>&lt;? echo 'test';<br></tt></tt><br>If you see 'test' after navigating to that file in the browser, it means that this instance is misconfigured and allows for the execution of uploaded files.<br>"
+                }
+            ],
+            "value": "Impacted instances are those whose PHP files stored in public_html/apps/edokumenty/var\u00a0can be executed. \nThis can be simply checked using the following temporary PHP file:\n<? echo 'test';\n\nIf you see 'test' after navigating to that file in the browser, it means that this instance is misconfigured and allows for the execution of uploaded files."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Maksymilian Kubiak, S\u0142awomir Zakrzewski, Jakub Stankiewicz - Afine Team"
+        }
+    ]
 }
\ No newline at end of file
diff --git a/2025/1xxx/CVE-2025-1981.json b/2025/1xxx/CVE-2025-1981.json
index 674b6509c65..8afa6f10144 100644
--- a/2025/1xxx/CVE-2025-1981.json
+++ b/2025/1xxx/CVE-2025-1981.json
@@ -1,18 +1,92 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-1981",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "cvd@cert.pl",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper neutralization of input provided by a low-privileged user into a file search functionality in Ready_'s Invoices module allows for SQL Injection attacks."
             }
         ]
-    }
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')",
+                        "cweId": "CWE-89"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Symfonia",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Ready_",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_affected": "<=",
+                                            "version_name": "7.0.0.0",
+                                            "version_value": "7.19.39.23"
+                                        },
+                                        {
+                                            "version_affected": "<=",
+                                            "version_name": "8.0.0.0",
+                                            "version_value": "8.0.2.3"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://cert.pl/posts/2025/04/CVE-2025-1980",
+                "refsource": "MISC",
+                "name": "https://cert.pl/posts/2025/04/CVE-2025-1980"
+            },
+            {
+                "url": "https://cert.pl/en/posts/2025/04/CVE-2025-1980",
+                "refsource": "MISC",
+                "name": "https://cert.pl/en/posts/2025/04/CVE-2025-1980"
+            },
+            {
+                "url": "https://ready-os.com/pl/",
+                "refsource": "MISC",
+                "name": "https://ready-os.com/pl/"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "UNKNOWN"
+    },
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Maksymilian Kubiak, S\u0142awomir Zakrzewski, Jakub Stankiewicz - Afine Team"
+        }
+    ]
 }
\ No newline at end of file
diff --git a/2025/1xxx/CVE-2025-1982.json b/2025/1xxx/CVE-2025-1982.json
index eedf29b1380..55899c09286 100644
--- a/2025/1xxx/CVE-2025-1982.json
+++ b/2025/1xxx/CVE-2025-1982.json
@@ -1,18 +1,92 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-1982",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "cvd@cert.pl",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Local File Inclusion vulnerability in Ready's attachment upload panel allows low privileged user to provide link to a local file using the file:// protocol thus allowing the attacker to read content of the file. This vulnerability can be use to read content of system files."
             }
         ]
-    }
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-552 Files or Directories Accessible to External Parties",
+                        "cweId": "CWE-552"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Symfonia",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Ready_",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_affected": "<=",
+                                            "version_name": "7.0.0.0",
+                                            "version_value": "7.19.39.23"
+                                        },
+                                        {
+                                            "version_affected": "<=",
+                                            "version_name": "8.0.0.0",
+                                            "version_value": "8.0.2.3"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://cert.pl/posts/2025/04/CVE-2025-1980",
+                "refsource": "MISC",
+                "name": "https://cert.pl/posts/2025/04/CVE-2025-1980"
+            },
+            {
+                "url": "https://cert.pl/en/posts/2025/04/CVE-2025-1980",
+                "refsource": "MISC",
+                "name": "https://cert.pl/en/posts/2025/04/CVE-2025-1980"
+            },
+            {
+                "url": "https://ready-os.com/pl/",
+                "refsource": "MISC",
+                "name": "https://ready-os.com/pl/"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Maksymilian Kubiak, S\u0142awomir Zakrzewski, Jakub Stankiewicz - Afine Team"
+        }
+    ]
 }
\ No newline at end of file
diff --git a/2025/1xxx/CVE-2025-1983.json b/2025/1xxx/CVE-2025-1983.json
index 3e2219d5c9b..2f3a8b5252a 100644
--- a/2025/1xxx/CVE-2025-1983.json
+++ b/2025/1xxx/CVE-2025-1983.json
@@ -1,18 +1,92 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-1983",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "cvd@cert.pl",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "A cross-site scripting (XSS) vulnerability in Ready_'s File Explorer upload functionality allows injection of arbitrary JavaScript code in filename. Injected content is stored on server and is executed every time a user interacts with the uploaded file."
             }
         ]
-    }
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Symfonia",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Ready_",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_affected": "<=",
+                                            "version_name": "7.0.0.0",
+                                            "version_value": "7.19.39.23"
+                                        },
+                                        {
+                                            "version_affected": "<=",
+                                            "version_name": "8.0.0.0",
+                                            "version_value": "8.0.2.3"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://cert.pl/posts/2025/04/CVE-2025-1980",
+                "refsource": "MISC",
+                "name": "https://cert.pl/posts/2025/04/CVE-2025-1980"
+            },
+            {
+                "url": "https://cert.pl/en/posts/2025/04/CVE-2025-1980",
+                "refsource": "MISC",
+                "name": "https://cert.pl/en/posts/2025/04/CVE-2025-1980"
+            },
+            {
+                "url": "https://ready-os.com/pl/",
+                "refsource": "MISC",
+                "name": "https://ready-os.com/pl/"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Maksymilian Kubiak, S\u0142awomir Zakrzewski, Jakub Stankiewicz - Afine Team"
+        }
+    ]
 }
\ No newline at end of file
diff --git a/2025/39xxx/CVE-2025-39543.json b/2025/39xxx/CVE-2025-39543.json
index 4e5720908a8..7445bdb2e53 100644
--- a/2025/39xxx/CVE-2025-39543.json
+++ b/2025/39xxx/CVE-2025-39543.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39543",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Royal Royal Elementor Addons allows Stored XSS. This issue affects Royal Elementor Addons: from n/a through 1.3.977."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WP Royal",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Royal Elementor Addons",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.3.977",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.3.979",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/royal-elementor-addons/vulnerability/wordpress-royal-elementor-addons-plugin-1-3-977-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/royal-elementor-addons/vulnerability/wordpress-royal-elementor-addons-plugin-1-3-977-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Royal Elementor Addons plugin to the latest available version (at least 1.3.979)."
+                }
+            ],
+            "value": "Update the WordPress Royal Elementor Addons plugin to the latest available version (at least 1.3.979)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "stealthcopter (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39544.json b/2025/39xxx/CVE-2025-39544.json
index 512372c0a4a..d5fec652020 100644
--- a/2025/39xxx/CVE-2025-39544.json
+++ b/2025/39xxx/CVE-2025-39544.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39544",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Cross-Site Request Forgery (CSRF) vulnerability in Bill Minozzi WP Tools allows Path Traversal. This issue affects WP Tools: from n/a through 5.18."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-352 Cross-Site Request Forgery (CSRF)",
+                        "cweId": "CWE-352"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Bill Minozzi",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "WP Tools",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "5.18",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "5.19",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wptools/vulnerability/wordpress-wp-tools-plugin-5-18-csrf-to-arbitrary-file-deletion-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wptools/vulnerability/wordpress-wp-tools-plugin-5-18-csrf-to-arbitrary-file-deletion-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress WP Tools plugin to the latest available version (at least 5.19)."
+                }
+            ],
+            "value": "Update the WordPress WP Tools plugin to the latest available version (at least 5.19)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "chuck (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 7.4,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H",
+                "baseSeverity": "HIGH",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "HIGH",
+                "confidentialityImpact": "NONE",
+                "integrityImpact": "NONE",
+                "privilegesRequired": "NONE",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39545.json b/2025/39xxx/CVE-2025-39545.json
index 187588f365f..2911631b9ef 100644
--- a/2025/39xxx/CVE-2025-39545.json
+++ b/2025/39xxx/CVE-2025-39545.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39545",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Missing Authorization vulnerability in miniOrange WordPress REST API Authentication allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WordPress REST API Authentication: from n/a through 3.6.3."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-862 Missing Authorization",
+                        "cweId": "CWE-862"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "miniOrange",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "WordPress REST API Authentication",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "3.6.3",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "3.6.4",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wp-rest-api-authentication/vulnerability/wordpress-wordpress-rest-api-authentication-3-6-3-settings-change-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wp-rest-api-authentication/vulnerability/wordpress-wordpress-rest-api-authentication-3-6-3-settings-change-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress WordPress REST API Authentication plugin to the latest available version (at least 3.6.4)."
+                }
+            ],
+            "value": "Update the WordPress WordPress REST API Authentication plugin to the latest available version (at least 3.6.4)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "chuck (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 5.4,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "NONE",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39546.json b/2025/39xxx/CVE-2025-39546.json
index 9f4fa2b6d5b..1f67574600b 100644
--- a/2025/39xxx/CVE-2025-39546.json
+++ b/2025/39xxx/CVE-2025-39546.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39546",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Cross-Site Request Forgery (CSRF) vulnerability in quomodosoft ElementsReady Addons for Elementor allows Cross Site Request Forgery. This issue affects ElementsReady Addons for Elementor: from n/a through 6.6.2."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-352 Cross-Site Request Forgery (CSRF)",
+                        "cweId": "CWE-352"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "quomodosoft",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "ElementsReady Addons for Elementor",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "6.6.2",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "6.6.3",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/element-ready-lite/vulnerability/wordpress-elementsready-addons-for-elementor-6-6-2-cross-site-request-forgery-csrf-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/element-ready-lite/vulnerability/wordpress-elementsready-addons-for-elementor-6-6-2-cross-site-request-forgery-csrf-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress ElementsReady Addons for Elementor plugin to the latest available version (at least 6.6.3)."
+                }
+            ],
+            "value": "Update the WordPress ElementsReady Addons for Elementor plugin to the latest available version (at least 6.6.3)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Nabil Irawan (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 4.3,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "NONE",
+                "confidentialityImpact": "NONE",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "NONE",
+                "scope": "UNCHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39547.json b/2025/39xxx/CVE-2025-39547.json
index 4cd1b496853..fc837402e0b 100644
--- a/2025/39xxx/CVE-2025-39547.json
+++ b/2025/39xxx/CVE-2025-39547.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39547",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Cross-Site Request Forgery (CSRF) vulnerability in Toast Plugins Internal Link Optimiser allows Stored XSS. This issue affects Internal Link Optimiser: from n/a through 5.1.3."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-352 Cross-Site Request Forgery (CSRF)",
+                        "cweId": "CWE-352"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Toast Plugins",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Internal Link Optimiser",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "5.1.3",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "5.1.4",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/internal-link-finder/vulnerability/wordpress-internal-link-optimiser-plugin-5-1-3-csrf-to-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/internal-link-finder/vulnerability/wordpress-internal-link-optimiser-plugin-5-1-3-csrf-to-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Internal Link Optimiser plugin to the latest available version (at least 5.1.4)."
+                }
+            ],
+            "value": "Update the WordPress Internal Link Optimiser plugin to the latest available version (at least 5.1.4)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "johska (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 7.1,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "HIGH",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "NONE",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39548.json b/2025/39xxx/CVE-2025-39548.json
index 5d6e91ed4c8..faa72702328 100644
--- a/2025/39xxx/CVE-2025-39548.json
+++ b/2025/39xxx/CVE-2025-39548.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39548",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Cross-Site Request Forgery (CSRF) vulnerability in A WP Life Right Click Disable OR Ban allows Stored XSS. This issue affects Right Click Disable OR Ban: from n/a through 1.1.17."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-352 Cross-Site Request Forgery (CSRF)",
+                        "cweId": "CWE-352"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "A WP Life",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Right Click Disable OR Ban",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.1.17",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.2.0",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/right-click-disable-or-ban/vulnerability/wordpress-right-click-disable-or-ban-plugin-1-1-17-csrf-to-stored-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/right-click-disable-or-ban/vulnerability/wordpress-right-click-disable-or-ban-plugin-1-1-17-csrf-to-stored-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Right Click Disable OR Ban plugin to the latest available version (at least 1.2.0)."
+                }
+            ],
+            "value": "Update the WordPress Right Click Disable OR Ban plugin to the latest available version (at least 1.2.0)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "johska (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 7.1,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "HIGH",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "NONE",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39549.json b/2025/39xxx/CVE-2025-39549.json
index b45b57e2c6b..7c27e4c04fe 100644
--- a/2025/39xxx/CVE-2025-39549.json
+++ b/2025/39xxx/CVE-2025-39549.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39549",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in whiletrue Most And Least Read Posts Widget allows Stored XSS. This issue affects Most And Least Read Posts Widget: from n/a through 2.5.20."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "whiletrue",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Most And Least Read Posts Widget",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.5.20",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.5.21",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/most-and-least-read-posts-widget/vulnerability/wordpress-most-and-least-read-posts-widget-2-5-20-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/most-and-least-read-posts-widget/vulnerability/wordpress-most-and-least-read-posts-widget-2-5-20-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Most And Least Read Posts Widget plugin to the latest available version (at least 2.5.21)."
+                }
+            ],
+            "value": "Update the WordPress Most And Least Read Posts Widget plugin to the latest available version (at least 2.5.21)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "muhammad yudha (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39552.json b/2025/39xxx/CVE-2025-39552.json
index 1a12a07a00c..1295e8595fd 100644
--- a/2025/39xxx/CVE-2025-39552.json
+++ b/2025/39xxx/CVE-2025-39552.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39552",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Missing Authorization vulnerability in Dylan James Zephyr Project Manager allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Zephyr Project Manager: from n/a through 3.3.200."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-862 Missing Authorization",
+                        "cweId": "CWE-862"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Dylan James",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Zephyr Project Manager",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "3.3.200",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "3.3.201",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/zephyr-project-manager/vulnerability/wordpress-zephyr-project-manager-3-3-200-broken-access-control-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/zephyr-project-manager/vulnerability/wordpress-zephyr-project-manager-3-3-200-broken-access-control-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Zephyr Project Manager plugin to the latest available version (at least 3.3.201)."
+                }
+            ],
+            "value": "Update the WordPress Zephyr Project Manager plugin to the latest available version (at least 3.3.201)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "stealthcopter (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 5.4,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "NONE",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39555.json b/2025/39xxx/CVE-2025-39555.json
index 640a7ddaf61..15858ac5d29 100644
--- a/2025/39xxx/CVE-2025-39555.json
+++ b/2025/39xxx/CVE-2025-39555.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39555",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in andy_moyle Church Admin allows Stored XSS. This issue affects Church Admin: from n/a through 5.0.23."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "andy_moyle",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Church Admin",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "5.0.23",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "5.0.24",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/church-admin/vulnerability/wordpress-church-admin-plugin-5-0-23-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/church-admin/vulnerability/wordpress-church-admin-plugin-5-0-23-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Church Admin plugin to the latest available version (at least 5.0.24)."
+                }
+            ],
+            "value": "Update the WordPress Church Admin plugin to the latest available version (at least 5.0.24)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "zaim (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39556.json b/2025/39xxx/CVE-2025-39556.json
index 533c1627926..b725e6cd667 100644
--- a/2025/39xxx/CVE-2025-39556.json
+++ b/2025/39xxx/CVE-2025-39556.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39556",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in mediavine Mediavine Control Panel allows Retrieve Embedded Sensitive Data. This issue affects Mediavine Control Panel: from n/a through 2.10.6."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere",
+                        "cweId": "CWE-497"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "mediavine",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Mediavine Control Panel",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.10.6",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.10.7",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/mediavine-control-panel/vulnerability/wordpress-mediavine-control-panel-plugin-2-10-6-sensitive-data-exposure-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/mediavine-control-panel/vulnerability/wordpress-mediavine-control-panel-plugin-2-10-6-sensitive-data-exposure-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Mediavine Control Panel plugin to the latest available version (at least 2.10.7)."
+                }
+            ],
+            "value": "Update the WordPress Mediavine Control Panel plugin to the latest available version (at least 2.10.7)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Anhchangmutrang (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 5.3,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "NONE",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "NONE",
+                "privilegesRequired": "NONE",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39557.json b/2025/39xxx/CVE-2025-39557.json
index d41a59adb0c..4209d60be4c 100644
--- a/2025/39xxx/CVE-2025-39557.json
+++ b/2025/39xxx/CVE-2025-39557.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39557",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Unrestricted Upload of File with Dangerous Type vulnerability in Ben Ritner - Kadence WP Kadence WooCommerce Email Designer allows Upload a Web Shell to a Web Server. This issue affects Kadence WooCommerce Email Designer: from n/a through 1.5.14."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-434 Unrestricted Upload of File with Dangerous Type",
+                        "cweId": "CWE-434"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Ben Ritner - Kadence WP",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Kadence WooCommerce Email Designer",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.5.14",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.5.15",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/kadence-woocommerce-email-designer/vulnerability/wordpress-kadence-woocommerce-email-designer-plugin-1-5-14-arbitrary-file-upload-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/kadence-woocommerce-email-designer/vulnerability/wordpress-kadence-woocommerce-email-designer-plugin-1-5-14-arbitrary-file-upload-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Kadence WooCommerce Email Designer plugin to the latest available version (at least 1.5.15)."
+                }
+            ],
+            "value": "Update the WordPress Kadence WooCommerce Email Designer plugin to the latest available version (at least 1.5.15)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Phan Trong Quan - VNPT Cyber Immunity (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 9.1,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
+                "baseSeverity": "CRITICAL",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "HIGH",
+                "confidentialityImpact": "HIGH",
+                "integrityImpact": "HIGH",
+                "privilegesRequired": "HIGH",
+                "scope": "CHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39560.json b/2025/39xxx/CVE-2025-39560.json
index 8475f67e509..0a389fb092c 100644
--- a/2025/39xxx/CVE-2025-39560.json
+++ b/2025/39xxx/CVE-2025-39560.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39560",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Missing Authorization vulnerability in Shahjada Live Forms allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Live Forms: from n/a through 4.8.4."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-862 Missing Authorization",
+                        "cweId": "CWE-862"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Shahjada",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Live Forms",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "4.8.4",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "4.8.5",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/liveforms/vulnerability/wordpress-live-forms-plugin-4-8-4-broken-access-control-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/liveforms/vulnerability/wordpress-live-forms-plugin-4-8-4-broken-access-control-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Live Forms plugin to the latest available version (at least 4.8.5)."
+                }
+            ],
+            "value": "Update the WordPress Live Forms plugin to the latest available version (at least 4.8.5)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Nguyen Xuan Chien (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 5.4,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "NONE",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39563.json b/2025/39xxx/CVE-2025-39563.json
index b11a77bdf27..5e88645894c 100644
--- a/2025/39xxx/CVE-2025-39563.json
+++ b/2025/39xxx/CVE-2025-39563.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39563",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Cross-Site Request Forgery (CSRF) vulnerability in WP Trio Conditional Payments for WooCommerce allows Cross Site Request Forgery. This issue affects Conditional Payments for WooCommerce: from n/a through 3.3.0."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-352 Cross-Site Request Forgery (CSRF)",
+                        "cweId": "CWE-352"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WP Trio",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Conditional Payments for WooCommerce",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "3.3.0",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "3.3.1",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/conditional-payments-for-woocommerce/vulnerability/wordpress-conditional-payments-for-woocommerce-3-3-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/conditional-payments-for-woocommerce/vulnerability/wordpress-conditional-payments-for-woocommerce-3-3-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Conditional Payments for WooCommerce plugin to the latest available version (at least 3.3.1)."
+                }
+            ],
+            "value": "Update the WordPress Conditional Payments for WooCommerce plugin to the latest available version (at least 3.3.1)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "lucky_buddy (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "HIGH",
+                "confidentialityImpact": "NONE",
+                "integrityImpact": "NONE",
+                "privilegesRequired": "NONE",
+                "scope": "UNCHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39564.json b/2025/39xxx/CVE-2025-39564.json
index 2c70c7e8d99..2f13c08c56a 100644
--- a/2025/39xxx/CVE-2025-39564.json
+++ b/2025/39xxx/CVE-2025-39564.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39564",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Cross-Site Request Forgery (CSRF) vulnerability in WP Trio Conditional Shipping for WooCommerce allows Cross Site Request Forgery. This issue affects Conditional Shipping for WooCommerce: from n/a through 3.4.0."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-352 Cross-Site Request Forgery (CSRF)",
+                        "cweId": "CWE-352"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WP Trio",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Conditional Shipping for WooCommerce",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "3.4.0",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "3.4.1",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/conditional-shipping-for-woocommerce/vulnerability/wordpress-conditional-shipping-for-woocommerce-3-4-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/conditional-shipping-for-woocommerce/vulnerability/wordpress-conditional-shipping-for-woocommerce-3-4-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Conditional Shipping for WooCommerce plugin to the latest available version (at least 3.4.1)."
+                }
+            ],
+            "value": "Update the WordPress Conditional Shipping for WooCommerce plugin to the latest available version (at least 3.4.1)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "lucky_buddy (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "HIGH",
+                "confidentialityImpact": "NONE",
+                "integrityImpact": "NONE",
+                "privilegesRequired": "NONE",
+                "scope": "UNCHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39565.json b/2025/39xxx/CVE-2025-39565.json
index c7c20f834f0..589fcd47320 100644
--- a/2025/39xxx/CVE-2025-39565.json
+++ b/2025/39xxx/CVE-2025-39565.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39565",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Deserialization of Untrusted Data vulnerability in Melapress MelaPress Login Security allows Object Injection. This issue affects MelaPress Login Security: from n/a through 2.1.0."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-502 Deserialization of Untrusted Data",
+                        "cweId": "CWE-502"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Melapress",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "MelaPress Login Security",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.1.0",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.1.1",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/melapress-login-security/vulnerability/wordpress-melapress-login-security-2-1-0-php-object-injection-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/melapress-login-security/vulnerability/wordpress-melapress-login-security-2-1-0-php-object-injection-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress MelaPress Login Security plugin to the latest available version (at least 2.1.1)."
+                }
+            ],
+            "value": "Update the WordPress MelaPress Login Security plugin to the latest available version (at least 2.1.1)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Phan Trong Quan - VNPT Cyber Immunity (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.6,
+                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "HIGH",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "HIGH",
+                "confidentialityImpact": "HIGH",
+                "integrityImpact": "HIGH",
+                "privilegesRequired": "HIGH",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39566.json b/2025/39xxx/CVE-2025-39566.json
index 2847dce26ee..f3ce59d4ed2 100644
--- a/2025/39xxx/CVE-2025-39566.json
+++ b/2025/39xxx/CVE-2025-39566.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39566",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bob Hostel allows Blind SQL Injection. This issue affects Hostel: from n/a through 1.1.5.6."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')",
+                        "cweId": "CWE-89"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Bob",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Hostel",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.1.5.6",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.1.5.7",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/hostel/vulnerability/wordpress-hostel-1-1-5-6-sql-injection-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/hostel/vulnerability/wordpress-hostel-1-1-5-6-sql-injection-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Hostel plugin to the latest available version (at least 1.1.5.7)."
+                }
+            ],
+            "value": "Update the WordPress Hostel plugin to the latest available version (at least 1.1.5.7)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "astra.r3verii (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 7.6,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L",
+                "baseSeverity": "HIGH",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "HIGH",
+                "integrityImpact": "NONE",
+                "privilegesRequired": "HIGH",
+                "scope": "CHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39570.json b/2025/39xxx/CVE-2025-39570.json
index 7bdca338181..3ffab83c7f5 100644
--- a/2025/39xxx/CVE-2025-39570.json
+++ b/2025/39xxx/CVE-2025-39570.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39570",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Lomu WPCOM Member allows PHP Local File Inclusion. This issue affects WPCOM Member: from n/a through 1.7.7."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')",
+                        "cweId": "CWE-98"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Lomu",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "WPCOM Member",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.7.7",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.7.8",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wpcom-member/vulnerability/wordpress-wpcom-member-1-7-7-local-file-inclusion-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wpcom-member/vulnerability/wordpress-wpcom-member-1-7-7-local-file-inclusion-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress WPCOM Member plugin to the latest available version (at least 1.7.8)."
+                }
+            ],
+            "value": "Update the WordPress WPCOM Member plugin to the latest available version (at least 1.7.8)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "astra.r3verii (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 8.8,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
+                "baseSeverity": "HIGH",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "HIGH",
+                "confidentialityImpact": "HIGH",
+                "integrityImpact": "HIGH",
+                "privilegesRequired": "LOW",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39571.json b/2025/39xxx/CVE-2025-39571.json
index ea240c7b117..feef52dcfbf 100644
--- a/2025/39xxx/CVE-2025-39571.json
+++ b/2025/39xxx/CVE-2025-39571.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39571",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Missing Authorization vulnerability in WPXPO WowStore allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WowStore: from n/a through 4.2.4."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-862 Missing Authorization",
+                        "cweId": "CWE-862"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WPXPO",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "WowStore",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "4.2.4",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "4.2.5",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/product-blocks/vulnerability/wordpress-wowstore-4-2-4-broken-access-control-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/product-blocks/vulnerability/wordpress-wowstore-4-2-4-broken-access-control-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress WowStore plugin to the latest available version (at least 4.2.5)."
+                }
+            ],
+            "value": "Update the WordPress WowStore plugin to the latest available version (at least 4.2.5)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "astra.r3verii (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 4.3,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "NONE",
+                "confidentialityImpact": "NONE",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39572.json b/2025/39xxx/CVE-2025-39572.json
index c05ff299390..94fc4b71223 100644
--- a/2025/39xxx/CVE-2025-39572.json
+++ b/2025/39xxx/CVE-2025-39572.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39572",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Noor Alam Checkout for PayPal allows Stored XSS. This issue affects Checkout for PayPal: from n/a through 1.0.38."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Noor Alam",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Checkout for PayPal",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.0.38",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.0.39",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/checkout-for-paypal/vulnerability/wordpress-checkout-for-paypal-1-0-38-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/checkout-for-paypal/vulnerability/wordpress-checkout-for-paypal-1-0-38-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Checkout for PayPal plugin to the latest available version (at least 1.0.39)."
+                }
+            ],
+            "value": "Update the WordPress Checkout for PayPal plugin to the latest available version (at least 1.0.39)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "muhammad yudha (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39573.json b/2025/39xxx/CVE-2025-39573.json
index d3f5a5d2797..1bdb0d21b2f 100644
--- a/2025/39xxx/CVE-2025-39573.json
+++ b/2025/39xxx/CVE-2025-39573.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39573",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in teastudio.pl WP Posts Carousel allows Stored XSS. This issue affects WP Posts Carousel: from n/a through 1.3.10."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "teastudio.pl",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "WP Posts Carousel",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.3.10",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.3.11",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wp-posts-carousel/vulnerability/wordpress-wp-posts-carousel-1-3-10-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wp-posts-carousel/vulnerability/wordpress-wp-posts-carousel-1-3-10-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress WP Posts Carousel plugin to the latest available version (at least 1.3.11)."
+                }
+            ],
+            "value": "Update the WordPress WP Posts Carousel plugin to the latest available version (at least 1.3.11)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "muhammad yudha (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39574.json b/2025/39xxx/CVE-2025-39574.json
index d0a2d7aabe7..a35cc154f2e 100644
--- a/2025/39xxx/CVE-2025-39574.json
+++ b/2025/39xxx/CVE-2025-39574.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39574",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in UIUX Lab Uix Shortcodes allows Stored XSS. This issue affects Uix Shortcodes: from n/a through 2.0.4."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "UIUX Lab",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Uix Shortcodes",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.0.4",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.0.5",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/uix-shortcodes/vulnerability/wordpress-uix-shortcodes-2-0-4-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/uix-shortcodes/vulnerability/wordpress-uix-shortcodes-2-0-4-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Uix Shortcodes plugin to the latest available version (at least 2.0.5)."
+                }
+            ],
+            "value": "Update the WordPress Uix Shortcodes plugin to the latest available version (at least 2.0.5)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "muhammad yudha (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39575.json b/2025/39xxx/CVE-2025-39575.json
index e9e887fd484..0b9bae3d94f 100644
--- a/2025/39xxx/CVE-2025-39575.json
+++ b/2025/39xxx/CVE-2025-39575.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39575",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPSight WPCasa allows Stored XSS. This issue affects WPCasa: from n/a through 1.3.2."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WPSight",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "WPCasa",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.3.2",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.4.0",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wpcasa/vulnerability/wordpress-wpcasa-1-3-2-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wpcasa/vulnerability/wordpress-wpcasa-1-3-2-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress WPCasa plugin to the latest available version (at least 1.4.0)."
+                }
+            ],
+            "value": "Update the WordPress WPCasa plugin to the latest available version (at least 1.4.0)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "muhammad yudha (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39576.json b/2025/39xxx/CVE-2025-39576.json
index d9b83c30e7a..c9e71830262 100644
--- a/2025/39xxx/CVE-2025-39576.json
+++ b/2025/39xxx/CVE-2025-39576.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39576",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Greg Winiarski WPAdverts allows Stored XSS. This issue affects WPAdverts: from n/a through 2.2.1."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Greg Winiarski",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "WPAdverts",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.2.1",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.2.2",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wpadverts/vulnerability/wordpress-wpadverts-2-2-1-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wpadverts/vulnerability/wordpress-wpadverts-2-2-1-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress WPAdverts plugin to the latest available version (at least 2.2.2)."
+                }
+            ],
+            "value": "Update the WordPress WPAdverts plugin to the latest available version (at least 2.2.2)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "muhammad yudha (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39577.json b/2025/39xxx/CVE-2025-39577.json
index dac3dfe585d..65fca3c53fb 100644
--- a/2025/39xxx/CVE-2025-39577.json
+++ b/2025/39xxx/CVE-2025-39577.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39577",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Property Hive PropertyHive allows Stored XSS. This issue affects PropertyHive: from n/a through 2.1.2."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Property Hive",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "PropertyHive",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.1.2",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.1.3",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/propertyhive/vulnerability/wordpress-propertyhive-2-1-2-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/propertyhive/vulnerability/wordpress-propertyhive-2-1-2-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress PropertyHive plugin to the latest available version (at least 2.1.3)."
+                }
+            ],
+            "value": "Update the WordPress PropertyHive plugin to the latest available version (at least 2.1.3)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "muhammad yudha (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39578.json b/2025/39xxx/CVE-2025-39578.json
index d0b9f00a022..b69da7ea552 100644
--- a/2025/39xxx/CVE-2025-39578.json
+++ b/2025/39xxx/CVE-2025-39578.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39578",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CyberChimps Responsive Blocks allows Stored XSS. This issue affects Responsive Blocks: from n/a through 2.0.2."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "CyberChimps",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Responsive Blocks",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.0.2",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.0.3",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/responsive-block-editor-addons/vulnerability/wordpress-responsive-blocks-2-0-2-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/responsive-block-editor-addons/vulnerability/wordpress-responsive-blocks-2-0-2-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Responsive Blocks plugin to the latest available version (at least 2.0.3)."
+                }
+            ],
+            "value": "Update the WordPress Responsive Blocks plugin to the latest available version (at least 2.0.3)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "zaim (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39579.json b/2025/39xxx/CVE-2025-39579.json
index dfb996df01b..f161a7a60ad 100644
--- a/2025/39xxx/CVE-2025-39579.json
+++ b/2025/39xxx/CVE-2025-39579.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39579",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Swings Membership For WooCommerce allows DOM-Based XSS. This issue affects Membership For WooCommerce: from n/a through 2.8.0."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WP Swings",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Membership For WooCommerce",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.8.0",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.8.1",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/membership-for-woocommerce/vulnerability/wordpress-membership-for-woocommerce-2-8-0-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/membership-for-woocommerce/vulnerability/wordpress-membership-for-woocommerce-2-8-0-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Membership For WooCommerce plugin to the latest available version (at least 2.8.1)."
+                }
+            ],
+            "value": "Update the WordPress Membership For WooCommerce plugin to the latest available version (at least 2.8.1)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "zaim (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39581.json b/2025/39xxx/CVE-2025-39581.json
index d12a0dc0949..00a1e868bc4 100644
--- a/2025/39xxx/CVE-2025-39581.json
+++ b/2025/39xxx/CVE-2025-39581.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39581",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themifyme Themify Shortcodes allows Stored XSS. This issue affects Themify Shortcodes: from n/a through 2.1.3."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "themifyme",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Themify Shortcodes",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.1.3",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.1.4",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/themify-shortcodes/vulnerability/wordpress-themify-shortcodes-2-1-3-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/themify-shortcodes/vulnerability/wordpress-themify-shortcodes-2-1-3-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Themify Shortcodes plugin to the latest available version (at least 2.1.4)."
+                }
+            ],
+            "value": "Update the WordPress Themify Shortcodes plugin to the latest available version (at least 2.1.4)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Peter Thaleikis (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39582.json b/2025/39xxx/CVE-2025-39582.json
index bdaad01fb46..c702cdb09cc 100644
--- a/2025/39xxx/CVE-2025-39582.json
+++ b/2025/39xxx/CVE-2025-39582.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39582",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Passionate Programmer Peter WP Data Access allows DOM-Based XSS. This issue affects WP Data Access: from n/a through 5.5.36."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Passionate Programmer Peter",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "WP Data Access",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "5.5.36",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "5.5.37",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wp-data-access/vulnerability/wordpress-wp-data-access-5-5-36-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wp-data-access/vulnerability/wordpress-wp-data-access-5-5-36-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress WP Data Access plugin to the latest available version (at least 5.5.37)."
+                }
+            ],
+            "value": "Update the WordPress WP Data Access plugin to the latest available version (at least 5.5.37)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Peter Thaleikis (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39584.json b/2025/39xxx/CVE-2025-39584.json
index bea9aa5b263..f200f430dc0 100644
--- a/2025/39xxx/CVE-2025-39584.json
+++ b/2025/39xxx/CVE-2025-39584.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39584",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Themewinter Eventin allows PHP Local File Inclusion. This issue affects Eventin: from n/a through 4.0.25."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')",
+                        "cweId": "CWE-98"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Themewinter",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Eventin",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "4.0.25",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "4.0.26",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wp-event-solution/vulnerability/wordpress-eventin-4-0-25-local-file-inclusion-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wp-event-solution/vulnerability/wordpress-eventin-4-0-25-local-file-inclusion-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Eventin plugin to the latest available version (at least 4.0.26)."
+                }
+            ],
+            "value": "Update the WordPress Eventin plugin to the latest available version (at least 4.0.26)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "theviper17 (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 7.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
+                "baseSeverity": "HIGH",
+                "attackComplexity": "HIGH",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "HIGH",
+                "confidentialityImpact": "HIGH",
+                "integrityImpact": "HIGH",
+                "privilegesRequired": "LOW",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39585.json b/2025/39xxx/CVE-2025-39585.json
index c60f80f7082..15b90987fbf 100644
--- a/2025/39xxx/CVE-2025-39585.json
+++ b/2025/39xxx/CVE-2025-39585.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39585",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themefic Travelfic Toolkit allows Stored XSS. This issue affects Travelfic Toolkit: from n/a through 1.2.1."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Themefic",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Travelfic Toolkit",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.2.1",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.2.3",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/travelfic-toolkit/vulnerability/wordpress-travelfic-toolkit-1-2-1-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/travelfic-toolkit/vulnerability/wordpress-travelfic-toolkit-1-2-1-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Travelfic Toolkit plugin to the latest available version (at least 1.2.3)."
+                }
+            ],
+            "value": "Update the WordPress Travelfic Toolkit plugin to the latest available version (at least 1.2.3)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Jo\u00e3o Pedro S Alc\u00e2ntara (Kinorth) (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39589.json b/2025/39xxx/CVE-2025-39589.json
index ed5ae80ea0d..37820393c42 100644
--- a/2025/39xxx/CVE-2025-39589.json
+++ b/2025/39xxx/CVE-2025-39589.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39589",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPDeveloper Essential Addons for Elementor allows Retrieve Embedded Sensitive Data. This issue affects Essential Addons for Elementor: from n/a through 6.1.9."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere",
+                        "cweId": "CWE-497"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WPDeveloper",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Essential Addons for Elementor",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "6.1.9",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "6.1.10",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/essential-addons-for-elementor-lite/vulnerability/wordpress-essential-addons-for-elementor-6-1-9-sensitive-data-exposure-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/essential-addons-for-elementor-lite/vulnerability/wordpress-essential-addons-for-elementor-6-1-9-sensitive-data-exposure-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Essential Addons for Elementor plugin to the latest available version (at least 6.1.10)."
+                }
+            ],
+            "value": "Update the WordPress Essential Addons for Elementor plugin to the latest available version (at least 6.1.10)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "stealthcopter (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 4.3,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "NONE",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "NONE",
+                "privilegesRequired": "LOW",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39590.json b/2025/39xxx/CVE-2025-39590.json
index fb40d22b0e7..c79d7b741a3 100644
--- a/2025/39xxx/CVE-2025-39590.json
+++ b/2025/39xxx/CVE-2025-39590.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39590",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential Addons for Elementor allows Stored XSS. This issue affects Essential Addons for Elementor: from n/a through 6.1.9."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WPDeveloper",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Essential Addons for Elementor",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "6.1.9",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "6.1.10",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/essential-addons-for-elementor-lite/vulnerability/wordpress-essential-addons-for-elementor-6-1-9-cross-site-scripting-xss-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/essential-addons-for-elementor-lite/vulnerability/wordpress-essential-addons-for-elementor-6-1-9-cross-site-scripting-xss-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Essential Addons for Elementor plugin to the latest available version (at least 6.1.10)."
+                }
+            ],
+            "value": "Update the WordPress Essential Addons for Elementor plugin to the latest available version (at least 6.1.10)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "stealthcopter (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 6.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39591.json b/2025/39xxx/CVE-2025-39591.json
index 1bbbceffcb7..772eb29dd4c 100644
--- a/2025/39xxx/CVE-2025-39591.json
+++ b/2025/39xxx/CVE-2025-39591.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39591",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Missing Authorization vulnerability in WP Shuffle WP Subscription Forms allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Subscription Forms: from n/a through 1.2.3."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-862 Missing Authorization",
+                        "cweId": "CWE-862"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WP Shuffle",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "WP Subscription Forms",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.2.3",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.2.4",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wp-subscription-forms/vulnerability/wordpress-wp-subscription-forms-1-2-3-broken-access-control-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wp-subscription-forms/vulnerability/wordpress-wp-subscription-forms-1-2-3-broken-access-control-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress WP Subscription Forms plugin to the latest available version (at least 1.2.4)."
+                }
+            ],
+            "value": "Update the WordPress WP Subscription Forms plugin to the latest available version (at least 1.2.4)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "LVT-tholv2k (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 5.4,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "LOW",
+                "confidentialityImpact": "NONE",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39592.json b/2025/39xxx/CVE-2025-39592.json
index 6a736cde6ac..3c9829ba346 100644
--- a/2025/39xxx/CVE-2025-39592.json
+++ b/2025/39xxx/CVE-2025-39592.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39592",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WP Shuffle Subscribe to Unlock Lite allows PHP Local File Inclusion. This issue affects Subscribe to Unlock Lite: from n/a through 1.3.0."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')",
+                        "cweId": "CWE-98"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WP Shuffle",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Subscribe to Unlock Lite",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.3.0",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.3.1",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/subscribe-to-unlock-lite/vulnerability/wordpress-subscribe-to-unlock-lite-1-3-0-local-file-inclusion-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/subscribe-to-unlock-lite/vulnerability/wordpress-subscribe-to-unlock-lite-1-3-0-local-file-inclusion-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Subscribe to Unlock Lite plugin to the latest available version (at least 1.3.1)."
+                }
+            ],
+            "value": "Update the WordPress Subscribe to Unlock Lite plugin to the latest available version (at least 1.3.1)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "LVT-tholv2k (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 7.5,
+                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
+                "baseSeverity": "HIGH",
+                "attackComplexity": "HIGH",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "HIGH",
+                "confidentialityImpact": "HIGH",
+                "integrityImpact": "HIGH",
+                "privilegesRequired": "LOW",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39593.json b/2025/39xxx/CVE-2025-39593.json
index 758ddc00825..fa8edefa8f3 100644
--- a/2025/39xxx/CVE-2025-39593.json
+++ b/2025/39xxx/CVE-2025-39593.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39593",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Cross-Site Request Forgery (CSRF) vulnerability in EverAccounting Ever Accounting allows Cross Site Request Forgery. This issue affects Ever Accounting: from n/a through 2.1.5."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-352 Cross-Site Request Forgery (CSRF)",
+                        "cweId": "CWE-352"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "EverAccounting",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Ever Accounting",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.1.5",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.1.6",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wp-ever-accounting/vulnerability/wordpress-ever-accounting-2-1-5-cross-site-request-forgery-csrf-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wp-ever-accounting/vulnerability/wordpress-ever-accounting-2-1-5-cross-site-request-forgery-csrf-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Ever Accounting plugin to the latest available version (at least 2.1.6)."
+                }
+            ],
+            "value": "Update the WordPress Ever Accounting plugin to the latest available version (at least 2.1.6)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Nguyen Thi Huyen Trang - Skalucy (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 4.3,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "NONE",
+                "confidentialityImpact": "NONE",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "NONE",
+                "scope": "UNCHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39597.json b/2025/39xxx/CVE-2025-39597.json
index edb9deb01c9..b6ab73f7fbb 100644
--- a/2025/39xxx/CVE-2025-39597.json
+++ b/2025/39xxx/CVE-2025-39597.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39597",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Arthur Yarwood Fast eBay Listings allows Phishing. This issue affects Fast eBay Listings: from n/a through 2.12.15."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-601 URL Redirection to Untrusted Site ('Open Redirect')",
+                        "cweId": "CWE-601"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Arthur Yarwood",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Fast eBay Listings",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.12.15",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.12.16",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/fast-ebay-listings/vulnerability/wordpress-fast-ebay-listings-2-12-15-open-redirection-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/fast-ebay-listings/vulnerability/wordpress-fast-ebay-listings-2-12-15-open-redirection-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Fast eBay Listings plugin to the latest available version (at least 2.12.16)."
+                }
+            ],
+            "value": "Update the WordPress Fast eBay Listings plugin to the latest available version (at least 2.12.16)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Nguyen Xuan Chien (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 4.7,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "NONE",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "NONE",
+                "privilegesRequired": "NONE",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39598.json b/2025/39xxx/CVE-2025-39598.json
index 6c8597a807d..34a22b92f60 100644
--- a/2025/39xxx/CVE-2025-39598.json
+++ b/2025/39xxx/CVE-2025-39598.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39598",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Path Traversal vulnerability in Qu\u00fd L\u00ea 91 Administrator Z allows Path Traversal. This issue affects Administrator Z: from n/a through 2025.03.28."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-35 Path Traversal",
+                        "cweId": "CWE-35"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Qu\u00fd L\u00ea 91",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Administrator Z",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2025.03.28",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2025.03.30",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/administrator-z/vulnerability/wordpress-administrator-z-2025-03-28-directory-traversal-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/administrator-z/vulnerability/wordpress-administrator-z-2025-03-28-directory-traversal-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Administrator Z plugin to the latest available version (at least 2025.03.30)."
+                }
+            ],
+            "value": "Update the WordPress Administrator Z plugin to the latest available version (at least 2025.03.30)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Nguyen Xuan Chien (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 4.9,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "NONE",
+                "confidentialityImpact": "HIGH",
+                "integrityImpact": "NONE",
+                "privilegesRequired": "HIGH",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39599.json b/2025/39xxx/CVE-2025-39599.json
index 337ab279387..32154d88b9b 100644
--- a/2025/39xxx/CVE-2025-39599.json
+++ b/2025/39xxx/CVE-2025-39599.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39599",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Webilia Inc. Listdom allows Phishing. This issue affects Listdom: from n/a through 4.0.0."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-601 URL Redirection to Untrusted Site ('Open Redirect')",
+                        "cweId": "CWE-601"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Webilia Inc.",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Listdom",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "4.0.0",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "4.1.0",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/listdom/vulnerability/wordpress-listdom-4-0-0-open-redirection-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/listdom/vulnerability/wordpress-listdom-4-0-0-open-redirection-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Listdom plugin to the latest available version (at least 4.1.0)."
+                }
+            ],
+            "value": "Update the WordPress Listdom plugin to the latest available version (at least 4.1.0)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Nguyen Xuan Chien (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 4.7,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "NONE",
+                "confidentialityImpact": "LOW",
+                "integrityImpact": "NONE",
+                "privilegesRequired": "NONE",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39600.json b/2025/39xxx/CVE-2025-39600.json
index f4e052c37e1..efaf366efbd 100644
--- a/2025/39xxx/CVE-2025-39600.json
+++ b/2025/39xxx/CVE-2025-39600.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39600",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks Integration for WooCommerce and QuickBooks allows Cross Site Request Forgery. This issue affects Integration for WooCommerce and QuickBooks: from n/a through 1.3.1."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-352 Cross-Site Request Forgery (CSRF)",
+                        "cweId": "CWE-352"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "CRM Perks",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Integration for WooCommerce and QuickBooks",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "1.3.1",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "1.3.2",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wp-woocommerce-quickbooks/vulnerability/wordpress-integration-for-woocommerce-and-quickbooks-1-3-1-cross-site-request-forgery-csrf-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wp-woocommerce-quickbooks/vulnerability/wordpress-integration-for-woocommerce-and-quickbooks-1-3-1-cross-site-request-forgery-csrf-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Integration for WooCommerce and QuickBooks plugin to the latest available version (at least 1.3.2)."
+                }
+            ],
+            "value": "Update the WordPress Integration for WooCommerce and QuickBooks plugin to the latest available version (at least 1.3.2)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Nguyen Xuan Chien (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 4.3,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "NONE",
+                "confidentialityImpact": "NONE",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "NONE",
+                "scope": "UNCHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39601.json b/2025/39xxx/CVE-2025-39601.json
index 55d5b38390e..4f711214185 100644
--- a/2025/39xxx/CVE-2025-39601.json
+++ b/2025/39xxx/CVE-2025-39601.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39601",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Cross-Site Request Forgery (CSRF) vulnerability in WPFactory Custom CSS, JS & PHP allows Remote Code Inclusion. This issue affects Custom CSS, JS & PHP: from n/a through 2.4.1."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-352 Cross-Site Request Forgery (CSRF)",
+                        "cweId": "CWE-352"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WPFactory",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Custom CSS, JS & PHP",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "2.4.1",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "2.4.2",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/custom-css/vulnerability/wordpress-custom-css-js-php-plugin-2-4-1-csrf-to-rce-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/custom-css/vulnerability/wordpress-custom-css-js-php-plugin-2-4-1-csrf-to-rce-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress Custom CSS, JS & PHP plugin to the latest available version (at least 2.4.2)."
+                }
+            ],
+            "value": "Update the WordPress Custom CSS, JS & PHP plugin to the latest available version (at least 2.4.2)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Nguyen Xuan Chien (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 9.6,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
+                "baseSeverity": "CRITICAL",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "HIGH",
+                "confidentialityImpact": "HIGH",
+                "integrityImpact": "HIGH",
+                "privilegesRequired": "NONE",
+                "scope": "CHANGED",
+                "userInteraction": "REQUIRED",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/39xxx/CVE-2025-39602.json b/2025/39xxx/CVE-2025-39602.json
index 010d34f5303..8ed7836d413 100644
--- a/2025/39xxx/CVE-2025-39602.json
+++ b/2025/39xxx/CVE-2025-39602.json
@@ -1,17 +1,122 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-39602",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "audit@patchstack.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Missing Authorization vulnerability in WC Product Table WooCommerce Product Table Lite allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WooCommerce Product Table Lite: from n/a through 3.9.5."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-862 Missing Authorization",
+                        "cweId": "CWE-862"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "WC Product Table",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "WooCommerce Product Table Lite",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "not down converted",
+                                            "x_cve_json_5_version_data": {
+                                                "versions": [
+                                                    {
+                                                        "lessThanOrEqual": "3.9.5",
+                                                        "status": "affected",
+                                                        "version": "n/a",
+                                                        "versionType": "custom",
+                                                        "changes": [
+                                                            {
+                                                                "at": "3.9.6",
+                                                                "status": "unaffected"
+                                                            }
+                                                        ]
+                                                    }
+                                                ],
+                                                "defaultStatus": "unaffected"
+                                            }
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://patchstack.com/database/wordpress/plugin/wc-product-table-lite/vulnerability/wordpress-woocommerce-product-table-lite-plugin-3-9-5-broken-access-control-vulnerability?_s_id=cve",
+                "refsource": "MISC",
+                "name": "https://patchstack.com/database/wordpress/plugin/wc-product-table-lite/vulnerability/wordpress-woocommerce-product-table-lite-plugin-3-9-5-broken-access-control-vulnerability?_s_id=cve"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "discovery": "EXTERNAL"
+    },
+    "solution": [
+        {
+            "lang": "en",
+            "supportingMedia": [
+                {
+                    "base64": false,
+                    "type": "text/html",
+                    "value": "Update the WordPress WooCommerce Product Table Lite plugin to the latest available version (at least 3.9.6)."
+                }
+            ],
+            "value": "Update the WordPress WooCommerce Product Table Lite plugin to the latest available version (at least 3.9.6)."
+        }
+    ],
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Mika (Patchstack Alliance)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "baseScore": 4.3,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
+                "baseSeverity": "MEDIUM",
+                "attackComplexity": "LOW",
+                "attackVector": "NETWORK",
+                "availabilityImpact": "NONE",
+                "confidentialityImpact": "NONE",
+                "integrityImpact": "LOW",
+                "privilegesRequired": "LOW",
+                "scope": "UNCHANGED",
+                "userInteraction": "NONE",
+                "version": "3.1"
             }
         ]
     }
diff --git a/2025/3xxx/CVE-2025-3687.json b/2025/3xxx/CVE-2025-3687.json
index 2a8743331d0..e5f64138b59 100644
--- a/2025/3xxx/CVE-2025-3687.json
+++ b/2025/3xxx/CVE-2025-3687.json
@@ -1,17 +1,118 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-3687",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "cna@vuldb.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "A vulnerability, which was classified as problematic, has been found in misstt123 oasys 1.0. Affected by this issue is some unknown functionality of the component Sticky Notes Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available."
+            },
+            {
+                "lang": "deu",
+                "value": "Eine problematische Schwachstelle wurde in misstt123 oasys 1.0 entdeckt. Es geht hierbei um eine nicht n\u00e4her spezifizierte Funktion der Komponente Sticky Notes Handler. Dank Manipulation mit unbekannten Daten kann eine cross-site request forgery-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk angegangen werden. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung. Dieses Produkt verzichtet auf eine Versionierung und verwendet stattdessen Rolling Releases. Deshalb sind keine Details zu betroffenen oder zu aktualisierende Versionen vorhanden."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "Cross-Site Request Forgery",
+                        "cweId": "CWE-352"
+                    }
+                ]
+            },
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "Missing Authorization",
+                        "cweId": "CWE-862"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "misstt123",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "oasys",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_affected": "=",
+                                            "version_value": "1.0"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://vuldb.com/?id.304976",
+                "refsource": "MISC",
+                "name": "https://vuldb.com/?id.304976"
+            },
+            {
+                "url": "https://vuldb.com/?ctiid.304976",
+                "refsource": "MISC",
+                "name": "https://vuldb.com/?ctiid.304976"
+            },
+            {
+                "url": "https://vuldb.com/?submit.553429",
+                "refsource": "MISC",
+                "name": "https://vuldb.com/?submit.553429"
+            },
+            {
+                "url": "https://github.com/misstt123/oasys/issues/11",
+                "refsource": "MISC",
+                "name": "https://github.com/misstt123/oasys/issues/11"
+            }
+        ]
+    },
+    "credits": [
+        {
+            "lang": "en",
+            "value": "moyu666 (VulDB User)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "version": "3.1",
+                "baseScore": 4.3,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
+                "baseSeverity": "MEDIUM"
+            },
+            {
+                "version": "3.0",
+                "baseScore": 4.3,
+                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
+                "baseSeverity": "MEDIUM"
+            },
+            {
+                "version": "2.0",
+                "baseScore": 5,
+                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N"
             }
         ]
     }
diff --git a/2025/3xxx/CVE-2025-3688.json b/2025/3xxx/CVE-2025-3688.json
index 3dab09291aa..c8825a5b9fd 100644
--- a/2025/3xxx/CVE-2025-3688.json
+++ b/2025/3xxx/CVE-2025-3688.json
@@ -1,17 +1,118 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-3688",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "cna@vuldb.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "A vulnerability, which was classified as problematic, was found in mirweiye Seven Bears Library CMS 2023. This affects an unknown part of the component Background Management Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used."
+            },
+            {
+                "lang": "deu",
+                "value": "Es wurde eine problematische Schwachstelle in mirweiye Seven Bears Library CMS 2023 gefunden. Es geht dabei um eine nicht klar definierte Funktion der Komponente Background Management Page. Mit der Manipulation mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk passieren. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "Cross Site Scripting",
+                        "cweId": "CWE-79"
+                    }
+                ]
+            },
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "Code Injection",
+                        "cweId": "CWE-94"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "mirweiye",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Seven Bears Library CMS",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_affected": "=",
+                                            "version_value": "2023"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://vuldb.com/?id.304977",
+                "refsource": "MISC",
+                "name": "https://vuldb.com/?id.304977"
+            },
+            {
+                "url": "https://vuldb.com/?ctiid.304977",
+                "refsource": "MISC",
+                "name": "https://vuldb.com/?ctiid.304977"
+            },
+            {
+                "url": "https://vuldb.com/?submit.553486",
+                "refsource": "MISC",
+                "name": "https://vuldb.com/?submit.553486"
+            },
+            {
+                "url": "https://github.com/KKDT12138/CVE/blob/main/cve.pdf",
+                "refsource": "MISC",
+                "name": "https://github.com/KKDT12138/CVE/blob/main/cve.pdf"
+            }
+        ]
+    },
+    "credits": [
+        {
+            "lang": "en",
+            "value": "kkdt (VulDB User)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "version": "3.1",
+                "baseScore": 2.4,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N",
+                "baseSeverity": "LOW"
+            },
+            {
+                "version": "3.0",
+                "baseScore": 2.4,
+                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N",
+                "baseSeverity": "LOW"
+            },
+            {
+                "version": "2.0",
+                "baseScore": 3.3,
+                "vectorString": "AV:N/AC:L/Au:M/C:N/I:P/A:N"
             }
         ]
     }
diff --git a/2025/3xxx/CVE-2025-3689.json b/2025/3xxx/CVE-2025-3689.json
index 8f0e0526bbf..74e618ef1b6 100644
--- a/2025/3xxx/CVE-2025-3689.json
+++ b/2025/3xxx/CVE-2025-3689.json
@@ -1,17 +1,123 @@
 {
+    "data_version": "4.0",
     "data_type": "CVE",
     "data_format": "MITRE",
-    "data_version": "4.0",
     "CVE_data_meta": {
         "ID": "CVE-2025-3689",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "cna@vuldb.com",
+        "STATE": "PUBLIC"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "A vulnerability has been found in PHPGurukul Men Salon Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/edit-customer-detailed.php. The manipulation of the argument editid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used."
+            },
+            {
+                "lang": "deu",
+                "value": "In PHPGurukul Men Salon Management System 1.0 wurde eine kritische Schwachstelle gefunden. Dabei geht es um eine nicht genauer bekannte Funktion der Datei /admin/edit-customer-detailed.php. Durch die Manipulation des Arguments editid mit unbekannten Daten kann eine sql injection-Schwachstelle ausgenutzt werden. Die Umsetzung des Angriffs kann dabei \u00fcber das Netzwerk erfolgen. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "SQL Injection",
+                        "cweId": "CWE-89"
+                    }
+                ]
+            },
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "Injection",
+                        "cweId": "CWE-74"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "PHPGurukul",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Men Salon Management System",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_affected": "=",
+                                            "version_value": "1.0"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://vuldb.com/?id.304978",
+                "refsource": "MISC",
+                "name": "https://vuldb.com/?id.304978"
+            },
+            {
+                "url": "https://vuldb.com/?ctiid.304978",
+                "refsource": "MISC",
+                "name": "https://vuldb.com/?ctiid.304978"
+            },
+            {
+                "url": "https://vuldb.com/?submit.553500",
+                "refsource": "MISC",
+                "name": "https://vuldb.com/?submit.553500"
+            },
+            {
+                "url": "https://github.com/Xiaoyao-i03i/CVE/issues/1",
+                "refsource": "MISC",
+                "name": "https://github.com/Xiaoyao-i03i/CVE/issues/1"
+            },
+            {
+                "url": "https://phpgurukul.com/",
+                "refsource": "MISC",
+                "name": "https://phpgurukul.com/"
+            }
+        ]
+    },
+    "credits": [
+        {
+            "lang": "en",
+            "value": "Xiaoyao_i03i (VulDB User)"
+        }
+    ],
+    "impact": {
+        "cvss": [
+            {
+                "version": "3.1",
+                "baseScore": 7.3,
+                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
+                "baseSeverity": "HIGH"
+            },
+            {
+                "version": "3.0",
+                "baseScore": 7.3,
+                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
+                "baseSeverity": "HIGH"
+            },
+            {
+                "version": "2.0",
+                "baseScore": 7.5,
+                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P"
             }
         ]
     }
diff --git a/2025/3xxx/CVE-2025-3721.json b/2025/3xxx/CVE-2025-3721.json
new file mode 100644
index 00000000000..9508f376720
--- /dev/null
+++ b/2025/3xxx/CVE-2025-3721.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-3721",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42600.json b/2025/42xxx/CVE-2025-42600.json
new file mode 100644
index 00000000000..31bd73edb83
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42600.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42600",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42601.json b/2025/42xxx/CVE-2025-42601.json
new file mode 100644
index 00000000000..52f61cd64eb
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42601.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42601",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42602.json b/2025/42xxx/CVE-2025-42602.json
new file mode 100644
index 00000000000..6da5aadb1c5
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42602.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42602",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42603.json b/2025/42xxx/CVE-2025-42603.json
new file mode 100644
index 00000000000..5246faedde3
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42603.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42603",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42604.json b/2025/42xxx/CVE-2025-42604.json
new file mode 100644
index 00000000000..25b1979950f
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42604.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42604",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42605.json b/2025/42xxx/CVE-2025-42605.json
new file mode 100644
index 00000000000..b1aa181ab1a
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42605.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42605",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42606.json b/2025/42xxx/CVE-2025-42606.json
new file mode 100644
index 00000000000..849433e66db
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42606.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42606",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42607.json b/2025/42xxx/CVE-2025-42607.json
new file mode 100644
index 00000000000..013970566d6
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42607.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42607",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42608.json b/2025/42xxx/CVE-2025-42608.json
new file mode 100644
index 00000000000..286708569c1
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42608.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42608",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42609.json b/2025/42xxx/CVE-2025-42609.json
new file mode 100644
index 00000000000..6aa0dc9d2ae
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42609.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42609",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42610.json b/2025/42xxx/CVE-2025-42610.json
new file mode 100644
index 00000000000..44c37f5b52b
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42610.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42610",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42611.json b/2025/42xxx/CVE-2025-42611.json
new file mode 100644
index 00000000000..ccb3680d0e1
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42611.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42611",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42612.json b/2025/42xxx/CVE-2025-42612.json
new file mode 100644
index 00000000000..c40a648cc35
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42612.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42612",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42613.json b/2025/42xxx/CVE-2025-42613.json
new file mode 100644
index 00000000000..e3c80d069a7
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42613.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42613",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42614.json b/2025/42xxx/CVE-2025-42614.json
new file mode 100644
index 00000000000..906f231f0d9
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42614.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42614",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42615.json b/2025/42xxx/CVE-2025-42615.json
new file mode 100644
index 00000000000..5f2cf3313f7
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42615.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42615",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42616.json b/2025/42xxx/CVE-2025-42616.json
new file mode 100644
index 00000000000..4ba7a4aeb10
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42616.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42616",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42617.json b/2025/42xxx/CVE-2025-42617.json
new file mode 100644
index 00000000000..69b8f5c4ca8
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42617.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42617",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42618.json b/2025/42xxx/CVE-2025-42618.json
new file mode 100644
index 00000000000..00a79e23363
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42618.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42618",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42619.json b/2025/42xxx/CVE-2025-42619.json
new file mode 100644
index 00000000000..3e37ebb6109
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42619.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42619",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42620.json b/2025/42xxx/CVE-2025-42620.json
new file mode 100644
index 00000000000..487150cf46b
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42620.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42620",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42621.json b/2025/42xxx/CVE-2025-42621.json
new file mode 100644
index 00000000000..5629b0f5a4d
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42621.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42621",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42622.json b/2025/42xxx/CVE-2025-42622.json
new file mode 100644
index 00000000000..56b1f65dd42
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42622.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42622",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42623.json b/2025/42xxx/CVE-2025-42623.json
new file mode 100644
index 00000000000..e654e29811a
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42623.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42623",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42624.json b/2025/42xxx/CVE-2025-42624.json
new file mode 100644
index 00000000000..4eb1d561a58
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42624.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42624",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42625.json b/2025/42xxx/CVE-2025-42625.json
new file mode 100644
index 00000000000..44509fd257e
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42625.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42625",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42626.json b/2025/42xxx/CVE-2025-42626.json
new file mode 100644
index 00000000000..b247171b1ac
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42626.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42626",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42627.json b/2025/42xxx/CVE-2025-42627.json
new file mode 100644
index 00000000000..dd9abf30a2f
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42627.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42627",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42628.json b/2025/42xxx/CVE-2025-42628.json
new file mode 100644
index 00000000000..f83d5c9cb08
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42628.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42628",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42629.json b/2025/42xxx/CVE-2025-42629.json
new file mode 100644
index 00000000000..5c22a099dc4
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42629.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42629",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42630.json b/2025/42xxx/CVE-2025-42630.json
new file mode 100644
index 00000000000..a7f0a490778
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42630.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42630",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42631.json b/2025/42xxx/CVE-2025-42631.json
new file mode 100644
index 00000000000..552499f2624
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42631.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42631",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42632.json b/2025/42xxx/CVE-2025-42632.json
new file mode 100644
index 00000000000..2db20ab3bc2
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42632.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42632",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42633.json b/2025/42xxx/CVE-2025-42633.json
new file mode 100644
index 00000000000..77c309b9e28
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42633.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42633",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42634.json b/2025/42xxx/CVE-2025-42634.json
new file mode 100644
index 00000000000..fd1314f18e0
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42634.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42634",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42635.json b/2025/42xxx/CVE-2025-42635.json
new file mode 100644
index 00000000000..7685a8c547b
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42635.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42635",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42636.json b/2025/42xxx/CVE-2025-42636.json
new file mode 100644
index 00000000000..0b50e447a89
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42636.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42636",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42637.json b/2025/42xxx/CVE-2025-42637.json
new file mode 100644
index 00000000000..4a6c3d4950e
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42637.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42637",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42638.json b/2025/42xxx/CVE-2025-42638.json
new file mode 100644
index 00000000000..f40af8b0417
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42638.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42638",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42639.json b/2025/42xxx/CVE-2025-42639.json
new file mode 100644
index 00000000000..97580b07902
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42639.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42639",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42640.json b/2025/42xxx/CVE-2025-42640.json
new file mode 100644
index 00000000000..99778fa4f15
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42640.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42640",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42641.json b/2025/42xxx/CVE-2025-42641.json
new file mode 100644
index 00000000000..90b8c21e92a
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42641.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42641",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42642.json b/2025/42xxx/CVE-2025-42642.json
new file mode 100644
index 00000000000..f6120d33ec0
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42642.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42642",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42643.json b/2025/42xxx/CVE-2025-42643.json
new file mode 100644
index 00000000000..5722c0a06e7
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42643.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42643",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42644.json b/2025/42xxx/CVE-2025-42644.json
new file mode 100644
index 00000000000..e1e31ce5dcc
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42644.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42644",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42645.json b/2025/42xxx/CVE-2025-42645.json
new file mode 100644
index 00000000000..c7e5098a3c1
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42645.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42645",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file
diff --git a/2025/42xxx/CVE-2025-42646.json b/2025/42xxx/CVE-2025-42646.json
new file mode 100644
index 00000000000..1b35e5d528b
--- /dev/null
+++ b/2025/42xxx/CVE-2025-42646.json
@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2025-42646",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
\ No newline at end of file