CVE-2026-42353 | i18next i18next-http-middleware prior 3.9.3 languages/namespaces server-side request forgery

Inserito da Angelo Barbosa | Apr 30, 2026 | CVE

A vulnerability was found in i18next i18next-http-middleware. It has been classified as critical. This issue affects some unknown processing. Performing a manipulation of the argument languages/namespaces results in server-side request forgery.

This vulnerability is cataloged as CVE-2026-42353. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-42353 | i18next i18next-http-middleware prior 3.9.3 languages/namespaces server-side request forgery

Post correlati

CVE-2024-20914 | Oracle ZFS Storage Appliance Kit 8.8 Core information disclosure

CVE-2025-11680 | warmcat libwebsockets up to 4.3.6/4.4.2 PNG File Parser unfilter_scanline width out-of-bounds write

CVE-2025-11327 | Tenda AC18 15.03.05.19(6318) /goform/SetUpnpCfg upnpEn stack-based overflow

CVE-2024-23123 | Autodesk AutoCAD/Advance Steel/Civil 3D CATPART File CC5Dll.dll out-of-bounds write