willdurand/js-translation-bundle potential path traversal attack and remote code injection

2024-06-0722:20:27

Google

osv.dev

path traversal

remote code injection

software

7.7 High

AI Score

Confidence

Low

JSON

A path traversal and a javascript code injection vulnerabilities were identified in willdurand/js-translation-bundle versions prior to 2.1.1.

CPENameOperatorVersion
willdurand/js-translation-bundleeq1.1.0
willdurand/js-translation-bundleeq2.0.0
willdurand/js-translation-bundleeq1.1.2
willdurand/js-translation-bundleeq1.0.1
willdurand/js-translation-bundleeq1.2.1
willdurand/js-translation-bundleeq1.0.2
willdurand/js-translation-bundleeq0.0.3
willdurand/js-translation-bundleeq0.0.4
willdurand/js-translation-bundleeq1.0.3
willdurand/js-translation-bundleeq0.3.0

Name	Operator	Version
willdurand/js-translation-bundle	eq	1.1.0
willdurand/js-translation-bundle	eq	2.0.0
willdurand/js-translation-bundle	eq	1.1.2
willdurand/js-translation-bundle	eq	1.0.1
willdurand/js-translation-bundle	eq	1.2.1
willdurand/js-translation-bundle	eq	1.0.2
willdurand/js-translation-bundle	eq	0.0.3
willdurand/js-translation-bundle	eq	0.0.4
willdurand/js-translation-bundle	eq	1.0.3
willdurand/js-translation-bundle	eq	0.3.0

Rows per page:

1-10 of 281

References

github.com/FriendsOfPHP/security-advisories/blob/master/willdurand/js-translation-bundle/2014-07-29-1.yaml

github.com/willdurand/BazingaJsTranslationBundle

github.com/willdurand/BazingaJsTranslationBundle/commit/7accee93569c3f3d2379f035a41ece66522801fc

github.com/willdurand/BazingaJsTranslationBundle/commit/df6c0fd603c0192ebc5584991a52a1092c5f60bd

github.com/willdurand/BazingaJsTranslationBundle/releases/tag/v2.1.1

7.7 High

AI Score

Confidence

Low

JSON