CVE-2025-41765

creationtimestamp| type| source ---|---|--- 2026-03-17 11:00:13+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhasypeiaf2i 2026-03-17 11:08:55+00:00| seen| https://bsky.app/profile/potato.software/post/3mhatiaonul2v...

CVE-2024-41765

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system...

Security Bulletin: IBM Engineering Lifecycle Optimization - Publishing could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted

Summary Software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a...

CVE-2022-41765

creationtimestamp| type| source ---|---|--- 2025-04-14 14:54:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11633...

CVE-2024-41765

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system...

CVE-2024-41765

creationtimestamp| type| source ---|---|--- 2025-01-04 14:42:22+00:00| seen| https://infosec.exchange/users/cve/statuses/113770603403534386 2025-01-04 15:15:35+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lewfitjb4o22 2025-01-04 17:16:05+00:00| seen|...

CVE-2024-41765 IBM Engineering Lifecycle Optimization - Publishing directory traversal

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system...

CVE-2023-41765

creationtimestamp| type| source ---|---|--- 2023-10-10 22:29:54+00:00| seen| https://t.me/cibsecurity/72040...

CVE-2023-41765

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability...

CVE-2023-41765 Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

...

CVE-2023-41765 Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

...

CVE-2023-41765

Technical details about CVE-2023-41765 (affected products, root cause, impact, or fixes) are not provided in the supplied documents. Monitor for updates and additional disclosures to assess applicability and remediation.

Vulnerabilities fixed in Microsoft Windows

Microsoft has fixed vulnerabilities in Windows. The most serious vulnerability with reference CVE-2023-35349 is in Microsoft Message Queueing MSQS. This vulnerability allows an unauthenticated remote malicious person to execute arbitrary execute arbitrary code with service privileges. MSMQ is...

Fedora: Security Advisory for mediawiki (FEDORA-2023-30a7a812f0)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

MediaWiki < 1.35.8, 1.36.x < 1.37.5, 1.38.x < 1.38.3 Multiple Vulnerabilities - Linux

MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...

MediaWiki < 1.35.8, 1.36.x < 1.37.5, 1.38.x < 1.38.3 Multiple Vulnerabilities - Windows

MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...

CVE-2022-41765

MediaWiki CVE-2022-41765 affects multiple 1.35.8, 1.36.x, 1.37.x before 1.37.5, and 1.38.x before 1.38.3. The HTMLUserTextField exposure allows disclosure of hidden users. Affected releases include MediaWiki up to 1.38.3 on various distros; fixes are provided in later releases (e.g., MediaWiki 1....

Mageia: Security Advisory (MGASA-2022-0370)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated mediawiki packages fix security vulnerability

HTMLUserTextField exposes existence of hidden users CVE-2022-41765. reassignEdits doesn't update results in an IP range check on Special:Contributions CVE-2022-41767...

Debian: Security Advisory (DLA-3148-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...