CNNVD-202512-3130 Information

CNNVD ID

CNNVD-202512-3130

Related CVE

CVE-2025-67492

• CNNVD Published: 2025-12-16

Description (Chinese)

Weblate是Weblate开源的一个 Copyleft 的基于 web 的自由软件持续本地化系统。 Weblate 5.15之前版本存在安全漏洞，该漏洞源于特制webhook有效载荷可能触发多个存储库更新，可能导致拒绝服务。

Description (English)

Weblate is a weblate open source, a web-based free software-based localization system. There was a security loophole in the pre-Weblate 5.15 version, which stemmed from the possibility that a specially designed webbook payload could trigger multiple repositories of renewal and could lead to the denial of services.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Weblate

Published

2025-12-16

Last Modified

2026-02-24

References

https://github.com/WeblateOrg/weblate/pull/17221 https://github.com/WeblateOrg/weblate/security/advisories/GHSA-pj86-258h-qrvf https://access.redhat.com/security/cve/cve-2025-67492

Patch

https://github.com/WeblateOrg/weblate/releases