CVE-2025-67715 | weblate up to 5.14 API access control (GHSA-3pmh-24wp-xpf4)

Inserito da Angelo Barbosa | Dic 16, 2025 | CVE

A vulnerability was found in weblate up to 5.14. It has been declared as problematic. Impacted is an unknown function of the component API. The manipulation results in improper access controls.

This vulnerability is cataloged as CVE-2025-67715. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

CVE-2025-67715 | weblate up to 5.14 API access control (GHSA-3pmh-24wp-xpf4)

Post correlati

CVE-2025-7164 | PHPGurukul/Campcodes Cyber Cafe Management System 1.0 /index.php Username sql injection

CVE-2024-29194 | OneUptime 7.0.1803 is_master_admin authorization (GHSA-246p-xmg8-wmcq)

CVE-2024-28960 | mbed TLS up to 2.28.7/3.5.x PSA Crypto API Privilege Escalation

CVE-2024-13210 | donglight bookstore电商书城系统说明 1.0 AdminBookController. java uploadPicture pictureFile unrestricted upload