An open API service providing security vulnerability metadata for many open source software ecosystems.

npm

@intlify/core

npm · @intlify/core · Repository · Package

Moderate
3 months ago

vue-i18n's escapeParameterHtml does not prevent DOM-based XSS through its tag attributes GSA_kwCzR0hTQS14OHFwLXdxcW0tNTdwaM4ABKPO

npm petite-vue-i18n, @intlify/vue-i18n-core, @intlify/core-base, @intlify/core, vue-i18n
High
7 months ago

Vue I18n Allows Prototype Pollution in `handleFlatJson` GSA_kwCzR0hTQS1wMnBoLTdnOTMtaHczbc4ABFM8

npm vue-i18n, petite-vue-i18n, @intlify/vue-i18n-core, @intlify/core, @intlify/core-base, @intlify/message-resolver
Moderate
10 months ago

vue-i18n has cross-site scripting vulnerability with prototype pollution GSA_kwCzR0hTQS05cjltLWZmcDYtOXg0ds4ABB_G

npm @intlify/vue-i18n-core, @intlify/core, vue-i18n, @intlify/core-base, petite-vue-i18n

Filter by Severity