VYPR

npm package

locize

pkg:npm/locize

Vulnerabilities (1)

  • CVE-2026-41886HigMay 8, 2026
    affected < 4.0.21fixed 4.0.21

    locize is a localization platform that connects code and i18n setup. Prior to version 4.0.21, the locize client SDK registers a window.addEventListener("message", …) handler that dispatches to registered internal handlers (editKey, commitKey, commitKeys, isLocizeEnabled, requestI