Low severityOSV Advisory· Published Jan 12, 2026· Updated Jan 12, 2026
wlc can skip SSL verification
CVE-2026-22250
Description
wlc is a Weblate command-line client using Weblate's REST API. Prior to 1.17.0, the SSL verification would be skipped for some crafted URLs. This vulnerability is fixed in 1.17.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
wlcPyPI | < 1.17.0 | 1.17.0 |
Affected products
2- Range: 0.1, 0.10, 0.2, …
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-2mmv-7rrp-g8xhghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2026-22250ghsaADVISORY
- github.com/WeblateOrg/wlc/commit/a513864ec4daad00146e6d6e039559726e256fa3ghsax_refsource_MISCWEB
- github.com/WeblateOrg/wlc/pull/1097ghsax_refsource_MISCWEB
- github.com/WeblateOrg/wlc/security/advisories/GHSA-2mmv-7rrp-g8xhghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.