CVE-2026-34244 | weblate up to 5.16 Error Message WEBLATE_MACHINERY server-side request forgery (GHSA-xrwr-fcw6-fmq8)

A vulnerability labeled as critical has been found in weblate up to 5.16. Affected by this vulnerability is an unknown functionality of the component Error Message Handler. Executing a manipulation of the argument WEBLATE_MACHINERY can lead to server-side request forgery.

This vulnerability appears as CVE-2026-34244. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More