Oracle Linux 10 : kernel (ELSA-2026-1690)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-1690 advisory. - RDMA/core: Fix 'KASAN: slab-use-after-free Read in ibregisterdevice' problem CKI Backport Bot RHEL-134363 CVE-2025-38022 - ASoC: Intel: bytcrrt5640:...

EUVD-2026-1690

mnl has segmentation fault and invalid memory read in mnl::cbrun...

CVE-2025-1690

The ThemeMakers Stripe Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'stripe' shortcode in versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

EUVD-2021-1690

Malware in sbrugna...

EUVD-2013-4642

Malware in sbrugna...

CVE-2023-1690

A vulnerability, which was classified as problematic, has been found in SourceCodester Earnings and Expense Tracker App 1.0. This issue affects some unknown processing of the file LoginRegistration.php?a=registeruser. The manipulation of the argument fullname leads to cross site scripting. The...

CVE-2022-1690

The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the ids from the bulk actions before using them in a SQL statement in an admin page, leading to an SQL injection...

Linux Distros Unpatched Vulnerability : CVE-2013-1690

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle...

CVE-2025-1690

The ThemeMakers Stripe Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'stripe' shortcode in versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2025-1690

creationtimestamp| type| source ---|---|--- 2025-02-27 08:26:42+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5659 2025-02-27 09:53:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lj5mo34e6b26 2025-02-27 12:52:30+00:00| seen|...

CVE-2025-1690 ThemeMakers Stripe Checkout <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The ThemeMakers Stripe Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'stripe' shortcode in versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2025-1690 ThemeMakers Stripe Checkout <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The ThemeMakers Stripe Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'stripe' shortcode in versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2025-1690

The CVE-2025-1690 entry concerns ThemeMakers Stripe Checkout for WordPress, which has a Stored Cross-Site Scripting (XSS) flaw in the stripe shortcode up to version 1.0.1 due to insufficient input sanitization and output escaping. Authenticated attackers with contributor-level permissions can inj...

Rocky Linux 8 : varnish (RLSA-2024:1690)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:1690 advisory. - Varnish Cache before 7.3.2 and 7.4.x before 7.4.3 and before 6.0.13 LTS, and Varnish Enterprise 6 before 6.0.12r6, allows credits exhaustion for an HTTP/2...

RHEL 8 : varnish (RHSA-2024:1690)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1690 advisory. Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and ov...

WordPress TeraWallet – For WooCommerce Plugin <= 1.4.10 is vulnerable to Broken Access Control

Software TeraWallet – For WooCommerce Type Plugin Vulnerable versions = 1.4.10 Fixed in 1.4.11 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1690 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 82fda70effd1 Credits Lucio Sá Requir...

CVE-2024-1690

The TeraWallet – Best WooCommerce Wallet System With Cashback Rewards, Partial Payment, Wallet Refunds plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the terawalletexportusersearch function in all versions up to, and including, 1.4.10. This...

CVE-2024-1690

CVE-2024-1690 affects the WordPress plugin “TeraWallet – Best WooCommerce Wallet System With Cashback Rewards, Partial Payment, Wallet Refunds.” All versions up to 1.4.10 are vulnerable to unauthorized data access due to a missing capability check in terawallet_export_user_search(), enabling auth...

SUSE: Security Advisory (SUSE-SU-2023:1690-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-1690

creationtimestamp| type| source ---|---|--- 2023-03-29 14:15:22+00:00| seen| https://t.me/cibsecurity/60998 2024-01-03 18:26:54+00:00| seen| https://t.me/arpsyndicate/2339...