Tag
high
advisory
Weblate Improper Privilege Management via API Endpoint (CVE-2026-34393)
2 rules 2 TTPs 1 CVEWeblate versions prior to 5.17 are vulnerable to improper privilege management due to an API endpoint failing to properly limit the scope of edits, potentially leading to unauthorized modifications.
weblate
privilege-escalation
web-application
2r
2t
1c
high
advisory
Weblate Project Backup Vulnerability Leads to Potential Remote Code Execution (CVE-2026-33435)
2 rules 3 TTPs 1 CVEWeblate versions before 5.17 are susceptible to remote code execution due to unfiltered Git and Mercurial configuration files in project backups, potentially allowing attackers to execute arbitrary code under specific conditions.
cve-2026-33435
rce
weblate
2r
3t
1c
medium
advisory
Weblate Path Traversal Vulnerability in ZIP Download Feature (CVE-2026-34242)
2 rules 2 TTPs 1 CVEWeblate versions before 5.17 are vulnerable to path traversal due to improper verification of downloaded files in the ZIP download feature, potentially allowing attackers to access files outside the intended repository.
weblate
path-traversal
zip-archive
cve-2026-34242
2r
2t
1c