Vulnerabilities (CVE)

Filtered by vendor I18n Project Subscribe
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-7791 1 I18n Project 1 I18n 2021-05-07 5.0 MEDIUM 7.5 HIGH
This affects the package i18n before 2.1.15. Vulnerability arises out of insufficient handling of erroneous language tags in src/i18n/Concrete/TextLocalizer.cs and src/i18n/LocalizedApplication.cs.
CVE-2013-4492 1 I18n Project 1 I18n 2021-05-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in exceptions.rb in the i18n gem before 0.6.6 for Ruby allows remote attackers to inject arbitrary web script or HTML via a crafted I18n::MissingTranslationData.new call.
CVE-2014-10077 2 Debian, I18n Project 2 Debian Linux, I18n 2018-12-13 5.0 MEDIUM 7.5 HIGH
Hash#slice in lib/i18n/core_ext/hash.rb in the i18n gem before 0.8.0 for Ruby allows remote attackers to cause a denial of service (application crash) via a call in a situation where :some_key is present in keep_keys but not present in the hash.