Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/06/18 10:17 p.m.5 views

CVE-2025-49134

Weblate is a web based localization tool. Prior to version 5.12, the audit log notifications included the full IP address of the acting user. This could be obtained by third-party servers such as SMTP relays, or spam filters. This issue has been patched in version 5.12...

5.3CVSS6.3AI score0.00268EPSS
Exploits0References1
NVD
NVD
added 2025/06/16 9:15 p.m.9 views

CVE-2025-49134

Weblate is a web based localization tool. Prior to version 5.12, the audit log notifications included the full IP address of the acting user. This could be obtained by third-party servers such as SMTP relays, or spam filters. This issue has been patched in version 5.12...

5.3CVSS0.00268EPSS
Exploits0References4
CVE
CVE
added 2025/06/16 9:3 p.m.36 views

CVE-2025-49134

Weblate (localization tool) exposed user IPs via audit log email notifications prior to version 5.12; IPs could be harvested by third‑party servers (SMTP relays, spam filters). The issue is resolved by patching in Weblate 5.12 (5.12.1 recommended).

5.3CVSS6.8AI score0.00268EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/06/16 9:3 p.m.12 views

CVE-2025-49134 Weblate exposes personal IP address via e-mail

Weblate is a web based localization tool. Prior to version 5.12, the audit log notifications included the full IP address of the acting user. This could be obtained by third-party servers such as SMTP relays, or spam filters. This issue has been patched in version 5.12...

2.1CVSS0.00268EPSS
Exploits0References4
Rows per page
Query Builder