CVE-2026-1402 vulnerabilities

Vulnerabilities for packages: gitlab-runner...

CVE-2026-1402 vulnerabilities

Vulnerabilities for packages: gitlab-rails-ce-fips, gitlab-rails-ce, gitlab-runner-fips, gitlab-runner...

CVE-2026-1402

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.1 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authenticated user to cause denial of service due to insufficient validation...

Linux Distros Unpatched Vulnerability : CVE-2026-1402

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.1 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain...

CVE-2026-1402

creationtimestamp| type| source ---|---|--- 2026-05-28 11:35:07+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmvwjfgzfg2c...

CVE-2026-1402

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.1 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authenticated user to cause denial of service due to insufficient validation...

CVE-2012-1402

Unspecified vulnerability in the QianXun YingShi com.qianxun.yingshi application 1.2.3 and 1.3.4 for Android has unknown impact and attack vectors...

CVE-2013-1402

DigiLIBE 3.4 and possibly other versions sends a redirect but does not exit, which allows remote attackers to obtain sensitive configuration information via a direct request to configuration/generalconfiguration.html...

CVE-2024-1402 vulnerabilities

Vulnerabilities for packages: mattermost-fips...

CVE-2025-1402

The Event Tickets and Registration plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'ajaxticketdelete' function in all versions up to, and including, 5.19.1.1. This makes it possible for authenticated attackers, with Contributor-level access...

CVE-2025-1402

creationtimestamp| type| source ---|---|--- 2025-02-21 11:18:25+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/4876 2025-02-21 15:26:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lip4jgqhk52v 2025-02-21 15:35:57+00:00| seen| https://t.me/cvedetector/18653 2025-08-25...

CVE-2025-1402 Event Tickets and Registration <= 5.19.1.1 - Missing Authorization to Ticket Deletion

The Event Tickets and Registration plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'ajaxticketdelete' function in all versions up to, and including, 5.19.1.1. This makes it possible for authenticated attackers, with Contributor-level access...

RHEL 7 / 8 : OpenShift Virtualization 2.6.10 RPMs (RHSA-2022:1402)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1402 advisory. OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory contains...

Mattermost Server < 8.1.8 / 9.x < 9.1.5 / 9.2.x < 9.2.4 (MMSA-2023-00276)

The version of Mattermost Server installed on the remote host is prior to 8.1.8, 9.x prior to 9.1.5 or 9.2.x prior to 9.2.4. It is, therefore, affected by a vulnerability as referenced in the MMSA-2023-00276 advisory. - Mattermost fails to check if a custom emoji reaction exists when sending it t...

CVE-2019-1402

creationtimestamp| type| source ---|---|--- 2024-02-11 15:36:52+00:00| seen| https://t.me/ctinow/182818...

CVE-2024-1402

creationtimestamp| type| source ---|---|--- 2024-02-09 17:21:58+00:00| seen| https://t.me/ctinow/182157 2024-03-03 09:16:24+00:00| seen| https://t.me/ctinow/198610...

CVE-2024-1402

CVE-2024-1402 concerns Mattermost where posts with a huge number of non-existent custom emoji reactions can crash both the mobile app and the server due to unbounded emoji handling. The initial description specifies the issue is that there is no check for existence of custom emoji reactions and n...

CVE-2024-1402 Denial of service in mattermost mobile apps and server via emoji reactions

Mattermost fails to check if a custom emoji reaction exists when sending it to a post and to limit the amount of custom emojis allowed to be added in a post, allowing an attacker sending a huge amount of non-existent custom emojis in a post to crash the mobile app of a user seeing the post and to...

MAL-2024-298 Malicious code in wlwz-2312-1402 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4446492a1d2315d695b4a7eb0d53f1b1998469f0abbe979a61d9414d16ca019 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in wlwz-2312-1402 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4446492a1d2315d695b4a7eb0d53f1b1998469f0abbe979a61d9414d16ca019 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...