CVE-2026-21889

NONE

Weblate is a web based localization tool. Prior to 5.15.2, the screenshot images were served directly by the HTTP server without proper access control. This could allow an unauthenticated user to acce

发布于: 1/14/2026更新于: 1/14/2026
在NVD查看在MITRE查看

描述

Weblate is a web based localization tool. Prior to 5.15.2, the screenshot images were served directly by the HTTP server without proper access control. This could allow an unauthenticated user to access screenshots after guessing their filename. This vulnerability is fixed in 5.15.2.

AI分析AI驱动

参考资料