Denial of Service and Content Injectioni18n-node-angular
i18n-node-angular prior to 1.4.0 are affected by denial of service and cross-site scripting vulnerabilities. The vulnerabilities exist in a REST endpoint that was created for development purposes, but was not disabled in production in affected versions.
Update to version 1.4.0 or later.
publishedAdvisory publishedJan 25th, 2016
reportedInitial report by Garth BoydJan 25th, 2016