MEDIUM 4.3 PyPI
CVE-2026-54262
PYSEC-2026-615 · CVE-2026-54262 · GHSA-8634-mr4j-r72c
Published · Modified
Description
Wagtail is an open source content management system built on Django. In versions prior to 7.0.8, 7.3.3 and 7.4.2, a low-level user with the "Can submit translation" permission can create translations for any page, including those they do not have permissions for. This issue has been fixed in versions 7.0.8, 7.3.3, and 7.4.2.
References
Ready to move
Start Securing
Free, no credit card | First findings in minutes