Package impact
PyPI / wlc
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-42150 | medium | 4.8 | 4.8 | 27d ago | wlc is a Weblate command-line client using Weblate's REST API. Prior to version 2.0.0, the HTML output format in wlc embeds API response data into HTML without escaping, allowing cross-site scripting… | |||
| CVE-2026-23535 | unknown | — | — | 5mo ago | Weblate wlc path traversal vulnerability: Unsanitized API slugs in download command | |||
| CVE-2026-22251 | unknown | — | — | 5mo ago | Weblate wlc has insecure API key configuration | |||
| CVE-2026-22250 | unknown | — | — | 5mo ago | wlc is a Weblate command-line client using Weblate's REST API. Prior to 1.17.0, the SSL verification would be skipped for some crafted URLs. This vulnerability is fixed in 1.17.0. |