Vulnerabilities > Weblate

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-04	CVE-2022-23915	Argument Injection or Modification vulnerability in Weblate The package weblate from 0 and before 4.11.1 are vulnerable to Remote Code Execution (RCE) via argument injection when using git or mercurial repositories. network low complexity weblate CWE-88	6.5
2022-02-25	CVE-2022-24710	Cross-site Scripting vulnerability in Weblate Weblate is a copyleft software web-based continuous localization system. network weblate CWE-79	3.5
2017-03-15	CVE-2017-5537	Information Exposure vulnerability in Weblate The password reset form in Weblate before 2.10.1 provides different error messages depending on whether the email address is associated with an account, which allows remote attackers to enumerate user accounts via a series of requests. network low complexity weblate CWE-200	5.0

Vulnerabilities > Weblate {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Weblate"}]}