Use of GET Request Method With Sensitive Query Strings

CVE-2025-32021

High

7.5/10

Summary

The weblate package is a web-based localization tool. In version prior to 5.11, when creating a new component from an existing component that has a source code repository URL specified in settings, this URL is included in the client's URL parameters during the creation process. If, for example, the source code repository URL contains GitHub credentials, the confidential "PAT" and "username" are shown in plain text and are saved into browser history. Moreover, if the request URL is logged, the credentials are written to logs in plain text. If using Weblate official Docker image, nginx logs the URL and the token in plain text.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: NONE

CWE-598 - Use of GET Request Method With Sensitive Query Strings

The web application uses the HTTP GET method to process a request and includes sensitive information in the query string of that request.

References

Advisory Timeline

Published Apr 15, 2025

Use of GET Request Method With Sensitive Query Strings

CVE-2025-32021

Summary

CWE-598 - Use of GET Request Method With Sensitive Query Strings

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS