Описание
wlc is a Weblate command-line client using Weblate's REST API. Prior to 1.17.2, the multi-translation download could write to an arbitrary location when instructed by a crafted server. This vulnerability is fixed in 1.17.2.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| jammy | needs-triage | |
| noble | needs-triage | |
| questing | needs-triage | |
| upstream | needs-triage |
Показывать по
10
Ссылки на источники
8 High
CVSS3
Связанные уязвимости
CVSS3: 8
nvd
22 дня назад
wlc is a Weblate command-line client using Weblate's REST API. Prior to 1.17.2, the multi-translation download could write to an arbitrary location when instructed by a crafted server. This vulnerability is fixed in 1.17.2.
CVSS3: 8
debian
22 дня назад
wlc is a Weblate command-line client using Weblate's REST API. Prior t ...
CVSS3: 8
github
22 дня назад
Weblate wlc path traversal vulnerability: Unsanitized API slugs in download command
8 High
CVSS3