GitLab 15.6 < 18.6.6 / 18.7 < 18.7.4 / 18.8 < 18.8.4 (CVE-2026-1387)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab EE affecting all versions from 15.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an authenticated user to cause Denial of...

CVE-2026-1387

creationtimestamp| type| source ---|---|--- 2026-02-11 13:55:16+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3melmweqeno2j...

CVE-2026-1387 Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 15.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an authenticated user to cause Denial of Service by uploading a malicious file and repeatedly querying it through GraphQl...

CVE-2026-1387

GitLab has remediated an issue in GitLab EE affecting all versions from 15.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an authenticated user to cause Denial of Service by uploading a malicious file and repeatedly querying it through GraphQl...

Amazon Linux 2023 : java-21-amazon-corretto, java-21-amazon-corretto-devel, java-21-amazon-corretto-headless (ALAS2023-2026-1387)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1387 advisory. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: RMI. Supported versions that are affected are Oracle Java SE...

MiracleLinux 7 : git-1.8.3.1-21.el7 (AXSA:2020-4429:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4429:01 advisory. git: Remote code execution in recursive clones with nested submodules CVE-2019-1387 Tenable has extracted the preceding description block directly from the...

CVE-2024-1387

The Happy Addons for Elementor plugin for WordPress is vulnerable to unauthorized access of data due to insufficient authorization on the duplicatething function in all versions up to, and including, 3.10.4. This makes it possible for attackers, with contributor-level access and above, to clone...

CVE-2020-1387

An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'...

Security Bulletin: IBM Storage Ceph is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor in Grafana (CVE-2023-1387)

Summary Grafana is used by IBM Storage Ceph in the dashboard. CVE-2023-1387 This bulletin identifies the steps to take to address the vulnerability in Grafana. Vulnerability Details CVEID:CVE-2023-1387 DESCRIPTION: Grafana could allow a remote authenticated attacker to obtain sensitive informatio...

Linux Distros Unpatched Vulnerability : CVE-2023-1387

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana is an open-source platform for monitoring and observability. Starting with the 9.1 branch, Grafana introduced the ability to search for a JWT in the URL...

Linux Distros Unpatched Vulnerability : CVE-2014-1387

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service memory...

CVE-2025-1387

Orca HCM from LEARNING DIGITAL has an Improper Authentication vulnerability, allowing unauthenticated remote attackers to log in to the system as any user...

CVE-2025-1387

Orca HCM from LEARNING DIGITAL has an Improper Authentication vulnerability, allowing unauthenticated remote attackers to log in to the system as any user...

CVE-2025-1387

creationtimestamp| type| source ---|---|--- 2025-02-17 03:46:58+00:00| seen| https://infosec.exchange/users/cve/statuses/114017174643760336 2025-02-17 04:15:40+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lidv5itr7q2y 2025-02-17 05:31:16+00:00| seen|...

CVE-2025-1387 Learning Digital Orca HCM - Improper Authentication

Orca HCM from LEARNING DIGITAL has an Improper Authentication vulnerability, allowing unauthenticated remote attackers to log in to the system as any user...

[SECURITY] [DLA 3867-1] git security update

Debian LTS Advisory DLA-3867-1 [email protected] https://www.debian.org/lts/security/ Sean Whitton September 03, 2024 https://wiki.debian.org/LTS Package : git Version : 1:2.30.2-1+deb11u3 CVE ID : CVE-2019-1387 CVE-2023-25652 CVE-2023-25815 CVE-2023-29007 CVE-2024-32002 CVE-2024-32004...

Debian dla-3867 : git - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3867 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3867-1 [email protected]...

[SECURITY] [DLA 3844-1] git security update

Debian LTS Advisory DLA-3844-1 [email protected] https://www.debian.org/lts/security/ Sean Whitton June 26, 2024 https://wiki.debian.org/LTS Package : git Version : 1:2.20.1-2+deb10u9 CVE ID : CVE-2019-1387 CVE-2023-25652 CVE-2023-25815 CVE-2023-29007 CVE-2024-32002 CVE-2024-32004...

Debian dla-3844 : git - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3844 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3844-1 [email protected]...

WordPress Happy Addons for Elementor Plugin <= 3.10.4 is vulnerable to Sensitive Data Exposure

Software Happy Addons for Elementor Type Plugin Vulnerable versions = 3.10.4 Fixed in 3.10.5 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-1387 Patch priority Low CVSS severity Low 4.3 Developer Leevio PSID dd0a3994bfa0 Credits Lucio Sá Required...