i18next-fs-backend
npm2 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting i18next-fs-backendpage 1 of 1
- CVE-2026-41693HIGHCVSS 8.2EG 8.2✓ Fixed in 2.6.42026-05-08
i18next-fs-backend is a backend layer for i18next using in Node.js and for Deno to load translations from the filesystem. Prior to version 2.6.4, i18next-fs-backend substitutes the lng and ns options directly into the configured loadPath /…
- CVE-2026-48713CRITICALCVSS 9.1EG 9.1✓ Fixed in 2.6.62026-06-15
Versions prior to 2.6.6 are vulnerable to prototype pollution via crafted missing-key strings when used to persist missing translation keys (e.g. via i18next-http-middleware's missingKeyHandler exposed to untrusted input). Backend.writeFil…
Check whether i18next-fs-backend is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for i18next-fs-backend CVEs against the assets you own.
Start Free Scan →