Linux Distros Unpatched Vulnerability : CVE-2026-33691

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The OWASP core rule set CRS is a set of generic attack detection rules for use with compatible web application firewalls. Prior to versions 3.3.9 and 4.25.0, a...

DEBIAN-CVE-2026-33691

The OWASP core rule set CRS is a set of generic attack detection rules for use with compatible web application firewalls. Prior to versions 3.3.9 and 4.25.0, a bypass was identified in OWASP CRS that allows uploading files with dangerous extensions .php, .phar, .jsp, .jspx by inserting whitespace...

CVE-2026-33691

creationtimestamp| type| source ---|---|--- 2026-03-29 17:26:27+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mi7o6fbcbz26 2026-03-30 19:28:33+00:00| seen| https://gist.github.com/HackingRepo/e30e7fc6dd9fee0fc349efbc732a45e3 2026-03-30 21:11:43+00:00| seen|...

CVE-2021-33691

NWDI Notification Service versions - 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability.SAP NetWeaver Development Infrastructure Notification Service allows a threat actor to send crafted scripts to a victim. If the victim ha...

CVE-2022-33691

A possible race condition vulnerability in score driver prior to SMR Jul-2022 Release 1 can allow local attackers to interleave malicious operations...

CVE-2024-33691

Cross-Site Request Forgery CSRF vulnerability in OptinMonster Popup Builder Team OptinMonster.This issue affects OptinMonster: from n/a through 2.15.3...

CVE-2024-33691 WordPress Popup Builder by OptinMonster plugin <= 2.15.3 - Cross Site Request Forgery (CSRF) Notice Dismissal vulnerability

Cross-Site Request Forgery CSRF vulnerability in OptinMonster Popup Builder Team OptinMonster.This issue affects OptinMonster: from n/a through 2.15.3...

WordPress OptinMonster Plugin <= 2.15.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software OptinMonster Type Plugin Vulnerable versions = 2.15.3 Fixed in 2.16.0 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-33691 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 73c4aeef8fbf Credits Dhabaleshwar Das...

CVE-2022-33691

A possible race condition vulnerability in score driver prior to SMR Jul-2022 Release 1 can allow local attackers to interleave malicious operations...

CVE-2022-33691

A possible race condition vulnerability in score driver prior to SMR Jul-2022 Release 1 can allow local attackers to interleave malicious operations...

CVE-2022-33691

The CVE-2022-33691 entry describes a race-condition vulnerability in Samsung Mobile’s score driver (prior to SMR Jul-2022 Release 1). The issue stems from insufficient synchronization points, enabling local attackers to interleave malicious operations. Impact indicators in the sources point to lo...

CVE-2021-33691

The CVE-2021-33691 issue affects SAP NetWeaver Development Infrastructure (NWDI) Notification Service, specifically versions 7.31, 7.40, and 7.50. The root cause is insufficient encoding of user-supplied inputs, which enables Cross-Site Scripting (XSS). A threat actor could send crafted scripts t...

CVE-2021-33691

creationtimestamp| type| source ---|---|--- 2021-09-01 14:28:22+00:00| seen| https://t.me/ptswarm/67 2021-09-06 10:48:25+00:00| seen| https://t.me/truesecator/2071 2023-10-10 19:45:47+00:00| seen| https://t.me/SecLabNews/10809...