Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
i18n project i18n vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-7791
This affects the package i18n prior to 2.1.15. Vulnerability arises out of insufficient handling of erroneous language tags in src/i18n/Concrete/TextLocalizer.cs and src/i18n/LocalizedApplication.cs.
I18n Project I18n
4.3
CVSSv2
CVE-2013-4492
Cross-site scripting (XSS) vulnerability in exceptions.rb in the i18n gem prior to 0.6.6 for Ruby allows remote malicious users to inject arbitrary web script or HTML via a crafted I18n::MissingTranslationData.new call.
I18n Project I18n
6
CVSSv2
CVE-2016-10524
i18n-node-angular is a module used to interact between i18n and angular without using additional resources. A REST API endpoint that is used for development in i18n-node-angular prior to 1.4.0 was not disabled in production environments a malicious user could fill up the server c...
I18n-node-angular Project I18n-node-angular
5
CVSSv2
CVE-2014-10077
Hash#slice in lib/i18n/core_ext/hash.rb in the i18n gem prior to 0.8.0 for Ruby allows remote malicious users to cause a denial of service (application crash) via a call in a situation where :some_key is present in keep_keys but not present in the hash.
I18n Project I18n
Debian Debian Linux 8.0
7.5
CVSSv2
CVE-2017-14952
Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ up to and including 59.1 allows remote malicious users to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue.
Icu-project International Components For Unicode
7.5
CVSSv2
CVE-2018-18928
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.
Icu-project International Components For Unicode 63.1
4.3
CVSSv2
CVE-2008-1977
Cross-site request forgery (CSRF) vulnerability in the Internationalization (i18n) Drupal module 5.x prior to 5.x-2.3 and 5.x-1.1, and 6.x prior to 6.x-1.0 beta 1, allows remote malicious users to change node translation relationships via unspecified vectors.
Localizer Project Localizer 5.x-1.x
Localizer Project Localizer 5.x-2.x
Localizer Project Localizer 5.x-3.0
Localizer Project Localizer 5.x-3.1
Localizer Project Localizer 5.x-1.3
Localizer Project Localizer 5.x-1.4
Localizer Project Localizer 5.x-1.5
Localizer Project Localizer 5.x-1.6
Localizer Project Localizer 5.x-1.1
Localizer Project Localizer 5.x-1.8
Localizer Project Localizer 5.x-1.10
Localizer Project Localizer 5.x-3.2
Localizer Project Localizer 5.x-1.0
Localizer Project Localizer 5.x-1.2
Localizer Project Localizer 5.x-1.7
Localizer Project Localizer 5.x-1.9
Localizer Project Localizer 5.x-3.3
Internationalization Project Internationalization 5.x-1.x
Internationalization Project Internationalization 5.x-2.0
Internationalization Project Internationalization 5.x-2.1
Internationalization Project Internationalization 5.x-2.2
Internationalization Project Internationalization 5.x-1.0
4.3
CVSSv2
CVE-2008-1976
Multiple cross-site scripting (XSS) vulnerabilities in the Drupal modules (1) Internationalization (i18n) 5.x prior to 5.x-2.3 and 5.x-1.1 and 6.x prior to 6.x-1.0 beta 1; and (2) Localizer 5.x prior to 5.x-3.4, 5.x-2.1, and 5.x-1.11; allow remote malicious users to inject arbitr...
Localizer Project Localizer 5.x-1.0
Localizer Project Localizer 5.x-1.1
Localizer Project Localizer 5.x-1.2
Localizer Project Localizer 5.x-1.3
Localizer Project Localizer 5.x-3.0
Localizer Project Localizer 5.x-3.1
Localizer Project Localizer 5.x-1.8
Localizer Project Localizer 5.x-1.9
Localizer Project Localizer 5.x-1.10
Localizer Project Localizer 5.x-3.2
Localizer Project Localizer 5.x-2.x
Localizer Project Localizer 5.x-1.5
Localizer Project Localizer 5.x-1.7
Localizer Project Localizer 5.x-3.3
Localizer Project Localizer 5.x-1.x
Localizer Project Localizer 5.x-1.4
Localizer Project Localizer 5.x-1.6
Internationalization Project Internationalization 5.x-2.1
Internationalization Project Internationalization 5.x-2.2
Internationalization Project Internationalization 5.x-1.x
Internationalization Project Internationalization 5.x-1.0
Internationalization Project Internationalization 5.x-2.0
2.6
CVSSv2
CVE-2007-5712
The internationalization (i18n) framework in Django 0.91, 0.95, 0.95.1, and 0.96, and as used in other products such as PyLucid, when the USE_I18N option and the i18n component are enabled, allows remote malicious users to cause a denial of service (memory consumption) via many H...
Django Project Django 0.91
Django Project Django 0.96
Django Project Django 0.95
Django Project Django 0.95.1
4.3
CVSSv2
CVE-2021-43785
@joeattardi/emoji-button is a Vanilla JavaScript emoji picker component. In affected versions there are two vectors for XSS attacks: a URL for a custom emoji, and an i18n string. In both of these cases, a value can be crafted such that it can insert a `script` tag into the page a...
Emoji Button Project Emoji Button
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started