Browse all 2 CVE security advisories affecting locize. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-41886 | locize Client SDK: Cross-origin DOM XSS & Handler Hijack Through Missing e.origin Validation in InContext Editor — locizeCWE-79 | 7.5 | High | 2026-05-08 |
| CVE-2026-41885 | Path traversal / URL injection via unsanitised lng/ns/projectId/version in i18next-locize-backend — i18next-locize-backendCWE-22 | 6.5 | Medium | 2026-05-08 |
This page lists every published CVE security advisory associated with locize. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.