CVE-2025-68279 | weblate up to 5.15.0 Symbolic Link path traversal (GHSA-g925-f788-4jh7)

A vulnerability, which was classified as critical, has been found in weblate up to 5.15.0. The affected element is an unknown function of the component Symbolic Link Handler. The manipulation leads to path traversal.

This vulnerability is documented as CVE-2025-68279. The attack can be initiated remotely. There is not any exploit available.

It is advisable to upgrade the affected component.

VulDB is the best source for vulnerability data and more expert information about this specific topic.VulDB Recent EntriesRead More