CVE-2025-68279

Published December 18th, 2025

View on NVD ↗

CVSS v3

7.7

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

Weblate is a web based localization tool. In versions prior to 5.15.1, it was possible to read arbitrary files from the server file system using crafted symbolic links in the repository. Version 5.15.1 fixes the issue.

WeblateOrg/weblate

Web based localization tool with tight version control integration.

GitHub

5.9K