CVE-2026-34393 | weblate up to 5.16 API Endpoint privileges management (GHSA-3382-gw9x-477v)

A vulnerability marked as critical has been reported in weblate up to 5.16. Affected by this issue is some unknown functionality of the component API Endpoint. The manipulation leads to improper privilege management.

This vulnerability is traded as CVE-2026-34393. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More