Weblate · Weblate · CVE-2026-21889
**Name of the Vulnerable Software and Affected Versions**
Weblate versions prior to 5.15.2
**Description**
Weblate is a web-based localization tool. Prior to version 5.15.2, screenshot images were served directly by the HTTP server without appropriate access controls. This allowed an unauthenticated user to potentially access screenshots by correctly guessing the filename.
**Recommendations**
Update Weblate to version 5.15.2 or later.