exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2024-39303

больше 1 года назад

Weblate is a web based localization tool. Prior to version 5.6.2, Weblate didn't correctly validate filenames when restoring project backup. It may be possible to gain unauthorized access to files on the server using a crafted ZIP file. This issue has been addressed in Weblate 5.6.2. As a workaround, do not allow untrusted users to create projects.

CVSS3: 4.4

EPSS: Низкий

CVE-2024-39303

больше 1 года назад

Weblate is a web based localization tool. Prior to version 5.6.2, Webl ...

CVSS3: 4.4

EPSS: Низкий

GHSA-jfgp-674x-6q4p

больше 1 года назад

Weblate vulnerable to improper sanitization of project backups

CVSS3: 4.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-39303 Weblate is a web based localization tool. Prior to version 5.6.2, Weblate didn't correctly validate filenames when restoring project backup. It may be possible to gain unauthorized access to files on the server using a crafted ZIP file. This issue has been addressed in Weblate 5.6.2. As a workaround, do not allow untrusted users to create projects.	CVSS3: 4.4	0% Низкий	больше 1 года назад
CVE-2024-39303 Weblate is a web based localization tool. Prior to version 5.6.2, Webl ...	CVSS3: 4.4	0% Низкий	больше 1 года назад
GHSA-jfgp-674x-6q4p Weblate vulnerable to improper sanitization of project backups	CVSS3: 4.4	0% Низкий	больше 1 года назад

Уязвимостей на страницу