CVE-2026-50127 | weblate up to 2026.5 server-side request forgery (GHSA-vmfc-9982-2m45)

Inserito da Angelo Barbosa | Giu 10, 2026 | CVE

A vulnerability marked as critical has been reported in weblate up to 2026.5. The affected element is an unknown function. This manipulation causes server-side request forgery.

This vulnerability is registered as CVE-2026-50127. Remote exploitation of the attack is possible. No exploit is available.

It is suggested to upgrade the affected component.

CVE-2026-50127 | weblate up to 2026.5 server-side request forgery (GHSA-vmfc-9982-2m45)

Post correlati

CVE-2025-30636 | Ability Accessibility Suite Plugin up to 4.19 on WordPress authorization

CVE-2025-58081 | DOS SS1 up to 16.0.0.10/16.0.0a hard-coded password

CVE-2025-0917 | IBM Cognos Analytics up to 12.0.4 cross site scripting

CVE-2023-42742 | Unisoc S8000 Sysui denial of service