ГлавнаяУязвимости → CVE-2026-34393
8.8высокая

CVE-2026-34393

Описание

Weblate is a web based localization tool. In versions prior to 5.17, the user patching API endpoint didn't properly limit the scope of edits. This issue has been fixed in version 5.17.

Затрагиваемое ПО
Weblate Weblate
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/WeblateOrg/weblate/pull/18687https://github.com/WeblateOrg/weblate/security/advisories/GHSA-3382-gw9x-477v