Package impact
npm / i18next-http-middleware
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-41690 | high | 8.6 | 8.6 | 21d ago | i18next-http-middleware: Prototype pollution and path traversal via user-controlled language and namespace parameters | |||
| CVE-2026-41683 | high | 8.6 | 8.6 | 21d ago | i18next-http-middleware: HTTP response splitting and DoS via unsanitised Content-Language header | |||
| CVE-2026-42353 | high | 8.2 | 8.2 | 21d ago | i18next-http-middleware has path traversal / SSRF via user-controlled language and namespace parameters |