CVE-2026-50127 | weblate up to 2026.5 server-side request forgery (GHSA-vmfc-9982-2m45)

A vulnerability marked as critical has been reported in weblate up to 2026.5. The affected element is an unknown function. This manipulation causes server-side request forgery.

This vulnerability is registered as CVE-2026-50127. Remote exploitation of the attack is possible. No exploit is available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More