Lucene search
K

4 matches found

OSV
OSV
added 2025/12/15 8:21 p.m.4 views

CVE-2025-64725 Weblate has improper validation upon invitation acceptance

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to accept an invitation opened by a different user. Version 5.15. contains a patch. As a workaround, avoid leaving one's Weblate sessions with an invitation opened unattended...

1CVSS6.7AI score0.00319EPSS
Exploits0References6
OSV
OSV
added 2025/12/15 7:58 p.m.2 views

GHSA-M6HQ-F4W9-QRJJ Weblate has improper validation upon invitation acceptance

Impact It was possible to accept an invitation opened by a different Weblate user. Patches https://github.com/WeblateOrg/weblate/pull/16913 Workarounds Users should avoid leaving Weblate sessions with an unattended opened invitation. References Thanks to Nahid0x for responsibly disclosing this...

1CVSS6.8AI score0.00319EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2025/12/15 7:58 p.m.7 views

Weblate has improper validation upon invitation acceptance

Impact It was possible to accept an invitation opened by a different Weblate user. Patches https://github.com/WeblateOrg/weblate/pull/16913 Workarounds Users should avoid leaving Weblate sessions with an unattended opened invitation. References Thanks to Nahid0x for responsibly disclosing this...

9.8CVSS6.9AI score0.00319EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2023/03/20 3:35 p.m.8 views

SUSE-SU-2023:0821-1 Security update for grafana

This update for grafana fixes the following issues: - CVE-2022-23552: Fixed SVG processing by adding a dompurify preprocessor step bsc1207749. - CVE-2022-39324: Fixed originalUrl spoof security issue bsc1207750. - CVE-2022-41723: Fixed go issue to avoid quadratic complexity in HPACK decoding...

8.8CVSS7.9AI score0.04561EPSS
Exploits1References9
Rows per page
Query Builder