See the full list of npm packages compromised in the "TanStack Supply Chain Compromise - May 2026" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- M
Directory TraversalCVE-2026-41885
Affects i18next-locize-backend | Versions <9.0.2
Has fix
npmPublished 4 May 2026
- H
External Control of File Name or PathCVE-2026-41693
Affects i18next-fs-backend | Versions <2.6.4
Has fix
npmPublished 4 May 2026
- H
Server-side Request Forgery (SSRF)CVE-2026-42353
Affects i18next-http-middleware | Versions <3.9.3
Has fix
npmPublished 4 May 2026
- H
HTTP Response SplittingCVE-2026-41683
Affects i18next-http-middleware | Versions <3.9.3
Has fix
npmPublished 4 May 2026
- H
Prototype PollutionCVE-2026-41690
Affects i18next-http-middleware | Versions <3.9.3
Has fix
npmPublished 4 May 2026
- L
Cross-site Scripting (XSS)CVE-2026-41692
Affects i18nextify | Versions <4.0.8
Has fix
npmPublished 4 May 2026
- M
Directory TraversalCVE-2026-41691
Affects i18next-http-backend | Versions <3.0.5
Has fix
npmPublished 4 May 2026
Affects @b2b_blocker/show_activation_error | Versions *
No fix available
npmPublished 4 May 2026
Affects @google-pay-trust/authorize-payment | Versions *
No fix available
npmPublished 4 May 2026
Affects @activation_code/success | Versions *
No fix available
npmPublished 4 May 2026
Affects @google-pay-trust/init-google-pay | Versions *
No fix available
npmPublished 4 May 2026
Affects @apple-pay-trust/validate-merchant | Versions *
No fix available
npmPublished 4 May 2026
Affects @activation_code/error | Versions *
No fix available
npmPublished 4 May 2026
Affects @sbt_gitverse/analytics-client | Versions *
No fix available
npmPublished 4 May 2026
Affects @tw-marionette/input | Versions *
No fix available
npmPublished 4 May 2026
Affects @apple-pay-trust/check-apple-pay-result | Versions *
No fix available
npmPublished 4 May 2026
Affects @business_promocode/apply_promocode | Versions *
No fix available
npmPublished 4 May 2026
Affects @apple-pay-trust/start | Versions *
No fix available
npmPublished 4 May 2026
Affects @b2b_blocker/hide_activation_error | Versions *
No fix available
npmPublished 4 May 2026
Affects @apple-pay-trust/authorize-payment | Versions *
No fix available
npmPublished 4 May 2026
Affects @apple-pay-trust/merchant-session | Versions *
No fix available
npmPublished 4 May 2026
Affects @apple-pay-trust/destroy | Versions *
No fix available
npmPublished 4 May 2026
Affects @apple-pay-trust/check-apple-pay | Versions *
No fix available
npmPublished 4 May 2026
Affects @apple-pay-trust/finish | Versions *
No fix available
npmPublished 4 May 2026
Affects @google-pay-trust/start | Versions *
No fix available
npmPublished 4 May 2026
Affects @montanatonytest/app.web | Versions *
No fix available
npmPublished 4 May 2026