CVE-2026-21889 | weblate up to 5.15.1 access control

January 14, 2026 Yanac

A vulnerability marked as critical has been reported in weblate up to 5.15.1. Affected by this vulnerability is an unknown functionality. Performing a manipulation results in improper access controls.

This vulnerability is identified as CVE-2026-21889. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More

CVE-2025-37185 | HPE EdgeConnect SD-WAN Orchestrator up to 9.4.4/9.6.0 cross site scripting
CVE-2026-22708 | Cursor up to 2.2 Setting external control of setting