127 matches found
CVE-2026-1477
creationtimestamp| type| source ---|---|--- 2026-01-27 19:29:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdgimyjgt623...
CVE-2025-1477 vulnerabilities
Vulnerabilities for packages: gitlab-runner, gitlab-runner-fips...
UBUNTU-CVE-2025-1477
An issue has been discovered in GitLab CE/EE affecting all versions from 8.14 before 18.0.6, 18.1 before 18.1.4, and 18.2 before 18.2.2 that could have allowed an unauthenticated user to create a denial of service condition by sending specially crafted payloads to specific integration API endpoin...
CVE-2025-1477
An issue has been discovered in GitLab CE/EE affecting all versions from 8.14 before 18.0.6, 18.1 before 18.1.4, and 18.2 before 18.2.2 that could have allowed an unauthenticated user to create a denial of service condition by sending specially crafted payloads to specific integration API endpoin...
CVE-2025-1477
CVE-2025-1477 affects GitLab CE/EE. An unauthenticated user could cause a denial-of-service by sending specially crafted payloads to specific integration API endpoints. Affected versions include GitLab CE/EE from 8.14 up to 18.0.5, 18.1 up to 18.1.3, and 18.2 up to 18.2.1; versions beyond these m...
CVE-2023-1477
Improper Authentication vulnerability in HYPR Keycloak Authenticator Extension allows Authentication Abuse.This issue affects HYPR Keycloak Authenticator Extension: before 7.10.2, before 8.0.3...
CVE-2019-1477
An elevation of privilege vulnerability exists when the Windows Printer Service improperly validates file paths while loading printer drivers, aka 'Windows Printer Service Elevation of Privilege Vulnerability'...
CVE-2024-1477
The Easy Maintenance Mode plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.2 via the REST API. This makes it possible for authenticated attackers to obtain post and page content via REST API thus bypassign the protection provided by th...
CVE-2024-1477
CVE-2024-1477 affects the Easy Maintenance Mode plugin for WordPress. All versions up to and including 1.4.2 are vulnerable to Sensitive Information Exposure via the REST API, enabling authenticated attackers to obtain post/page content and bypass plugin protections. Root cause: REST API exposure...
WordPress Easy Maintenance Mode Plugin <= 1.4.2 is vulnerable to Sensitive Data Exposure
Software Easy Maintenance Mode Type Plugin Vulnerable versions = 1.4.2 Fixed in N/A OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-1477 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 476e05c6025b Credits Francesco Carlucci...
CVE-2019-1477
creationtimestamp| type| source ---|---|--- 2024-03-09 15:16:25+00:00| seen| https://t.me/ctinow/203961...
CVE-2023-1477
creationtimestamp| type| source ---|---|--- 2023-04-28 18:27:31+00:00| seen| https://t.me/cibsecurity/63066...
CVE-2023-1477
Improper Authentication vulnerability in HYPR Keycloak Authenticator Extension allows Authentication Abuse.This issue affects HYPR Keycloak Authenticator Extension: before 7.10.2, before 8.0.3...
CVE-2023-1477
Improper Authentication vulnerability in HYPR Keycloak Authenticator Extension allows Authentication Abuse.This issue affects HYPR Keycloak Authenticator Extension: before 7.10.2, before 8.0.3...
CVE-2023-1477
Improper Authentication vulnerability in HYPR Keycloak Authenticator Extension allows Authentication Abuse.This issue affects HYPR Keycloak Authenticator Extension: before 7.10.2, before 8.0.3...
CVE-2023-1477
Improper Authentication vulnerability in HYPR Keycloak Authenticator Extension allows Authentication Abuse.This issue affects HYPR Keycloak Authenticator Extension: before 7.10.2, before 8.0.3...
CVE-2023-1477
The CVE-2023-1477 entry concerns the HYPR Keycloak Authenticator Extension, where an Improper Authentication flaw enables Authentication Abuse. Affected components are HYPR Keycloak Authenticator Extension prior to versions 7.10.2 and 8.0.3. Root cause: insufficient/authentication bypass risk in ...
CVE-2022-1477
Use after free in Vulkan in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2022-1477
Use after free in Vulkan in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2022-1477
Use after free in Vulkan in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...