ГлавнаяУязвимости → CVE-2026-34242
7.7высокая

CVE-2026-34242

Описание

Weblate is a web based localization tool. In versions prior to 5.17, the ZIP download feature didn't verify downloaded files, potentially following symlinks outside the repository. This issue has been fixed in version 5.17.

Затрагиваемое ПО
Weblate Weblate
CVSS
Балл7.7 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Источники
https://github.com/WeblateOrg/weblate/commit/5db3a2a2e047ecaab627a8731cd744a30b2f51d3https://github.com/WeblateOrg/weblate/security/advisories/GHSA-hv99-mxm5-q397