CVE-2026-1691

A vulnerability has been found in bolo-solo up to 2.6.4. This impacts the function importMarkdownsSync of the file src/main/java/org/b3log/solo/bolo/prop/BackupService.java of the component SnakeYAML. Such manipulation leads to deserialization. The attack may be launched remotely. The exploit has...

EUVD-2013-6539

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2011-1691

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in the Cascading Style Sheets CSS implementation in WebCore in WebKit before r82222, as used i...

CVE-2022-1691

The Realty Workstation WordPress plugin before 1.0.15 does not sanitise and escape the transedit parameter before using it in a SQL statement when an agent edit a transaction, leading to an SQL injection...

@gnar-engine/core (>=1.0.1 <=1.0.23) potentially affected by CVE-2025-1691 via mongosh (=1.10.6)

mongosh NPM version =1.10.6 is affected by a known vulnerability. The following packages have a transitive dependency on mongosh and may be impacted: - @gnar-engine/core =1.0.1, =1.0.23 Source cves: CVE-2025-1691 Source advisory: OSV:GHSA-43G5-2WR2-Q7VJ...

CVE-2025-1691

creationtimestamp| type| source ---|---|--- 2025-02-27 13:27:49+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5676 2025-02-27 14:30:56+00:00| seen| Telegram/8yOYO6tlUL8g395WybOOGlJbQsya4zgpogj5jDmK3igg 2025-02-27 15:53:32+00:00| seen|...

CVE-2025-1691 MongoDB Shell may be susceptible to Control Character Injection via autocomplete

The MongoDB Shell may be susceptible to control character injection where an attacker with control of the mongosh autocomplete feature, can use the autocompletion feature to input and run obfuscated malicious text. This requires user interaction in the form of the user using ‘tab’ to autocomplete...

Oracle Linux 9 : varnish (ELSA-2024-1691)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-1691 advisory. - Resolves: RHEL-30387 - varnish: HTTP/2 Broken Window Attack may result in denial of service CVE-2024-30156 - Add parameters h2rstallowance and...

CVE-2013-1691

creationtimestamp| type| source ---|---|--- 2024-03-25 11:49:23+00:00| seen| https://t.me/ETHICALHACKERSCOMMUNITY2/3889 2024-03-25 14:38:09+00:00| seen| Telegram/HKj6TR4hMohrGsEUcNFDijNGdim3MCZhggfzha3EYtXw 2024-03-25 14:38:09+00:00| seen| https://t.me/tengkorakcybercrewz/4400 2024-03-25...

CVE-2024-1691

The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via file upload form, which allows SVG uploads, in all versions up to, and including, 2.6.3 due to insufficient input sanitization and output escaping...

CVE-2024-1691

CVE-2024-1691 – Otter Blocks PRO (WordPress) suffers Stored Cross-Site Scripting via an SVG file upload vector due to insufficient input sanitization and output escaping. Affected: Otter Blocks PRO – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE PRO (WordPress). Impact: unauthenticate...

Oracle Linux 6 : util-linux-ng (ELSA-2011-1691)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-1691 advisory. - fix CVE-2011-1675 - mount fails to anticipate RLIMITFSIZE - fix CVE-2011-1677 - umount may fail to remove /etc/mtab lock file Tenable has extracted t...

CVE-2023-1691

CVE-2023-1691 is reported as a vulnerability in Huawei HarmonyOS involving a failure to properly catch exceptions in the communication framework. The flaw can cause features to behave abnormally when exploited. Multiple connected sources (including Huawei/HarmonyOS bulletins and CNNVD entries) at...

RHEL 9 : kernel-rt (RHSA-2023:1691)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1691 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Securi...

SUSE: Security Advisory (SUSE-SU-2023:1691-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux AMI : openldap (ALAS-2023-1691)

The version of openldap installed on the remote host is prior to 2.4.40-16.32. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1691 advisory. In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backen...

CVE-2020-1691

creationtimestamp| type| source ---|---|--- 2022-08-05 20:26:59+00:00| seen| Telegram/SChYYYGld9tv52oTsmNdU4HVwQWdpRX4MgBUXUXI2QcecRY...

CVE-2020-1691

In Moodle 3.8, CVE-2020-1691 concerns insufficient sanitization of messages before updating the conversation overview, risking stored cross-site scripting. The affected component is Moodle’s messaging/conversation update flow. The underlying issue is improper input sanitization that could allow i...

CVE-2022-1691

creationtimestamp| type| source ---|---|--- 2022-06-08 14:45:53+00:00| seen| https://t.me/cibsecurity/44004...

CVE-2022-1691

Summary: CVE-2022-1691 affects the Realty Workstation WordPress plugin prior to 1.0.15, where the trans_edit parameter is not sanitized/escaped in a SQL statement during transaction edits, enabling SQL injection. Multiple sources (RH, CNVD, CVE listings, PT- Security, PatchStack) confirm the issu...