Info Published: Dec 15, 2025

CVE-2025-64725

0 CVSS Score Info

Export CVE-2025-64725 Data:

Link copied!

Description

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to accept an invitation opened by a different user. Version 5.15. contains a patch. As a workaround, avoid leaving one's Weblate sessions with an invitation opened unattended.

Weaknesses (CWE)

CWE-286

References & External Links

https://github.com/WeblateOrg/weblate/commit/02e904675f0608a6bbfbf9466eeccd9d022591e9
https://github.com/WeblateOrg/weblate/pull/16913
https://github.com/WeblateOrg/weblate/releases/tag/weblate-5.15
https://github.com/WeblateOrg/weblate/security/advisories/GHSA-m6hq-f4w9-qrjj

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

CVE History Timeline

Dec 15, 2025 21:15 New CVE Received

← Back to CVE Tracker