CNNVD-202511-485 Information

CNNVD ID

CNNVD-202511-485

Related CVE

CVE-2025-64326

• CNNVD Published: 2025-11-06

Description (Chinese)

Weblate是Weblate开源的一个 Copyleft 的基于 web 的自由软件持续本地化系统。 Weblate 5.14及之前版本存在安全漏洞，该漏洞源于审计日志泄露项目成员IP地址，可能导致信息泄露。

Description (English)

Weblate is a weblate open source, a web-based free software-based localization system. There is a security loophole in Weblate 5.14 and earlier versions, which stems from the disclosure of the IP address of the project members in the audit log, which may lead to the disclosure of information.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

Weblate

Published

2025-11-06

Last Modified

2026-02-24

References

https://github.com/WeblateOrg/weblate/pull/16781 https://github.com/WeblateOrg/weblate/security/advisories/GHSA-gr35-vpx2-qxhc

Patch

https://weblate.org/zh-hans/download/