Lucene search
GitHub Advisory DatabaseGHSA-7H4W-6P98-R3WXHistoryFeb 21, 2023 - 3:30 p.m.
textAngular Cross-site Scripting vulnerability
2023-02-2115:30:23
CWE-79
GitHub Advisory Database
github.com
9
textangular
angular.js
cross-site scripting
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
34.8%
textAngular is a text editor for Angular.js. Version 1.5.16 and prior are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. There are no known patches.
Affected configurations
Node
textangulartextangularRange≤1.5.16
| Vendor | Product | Version | CPE |
|---|---|---|---|
| textangular | textangular | * | cpe:2.3:a:textangular:textangular:*:*:*:*:*:*:*:* |
Related
veracode
veracode
Cross-Site Scripting (XSS)
2022-04-06 15:22:45
nvd
nvd
CVE-2021-32854
2023-02-21 15:15:10
cve
cve
CVE-2021-32854
2023-02-21 15:15:10
osv
osv
CVE-2021-32854
2023-02-21 15:15:10
textAngular Cross-site Scripting vulnerability
2023-02-21 15:30:23
prion
prion
Cross site scripting
2023-02-21 15:15:00
cvelist
cvelist
CVE-2021-32854 textAngular text editor vulnerable to Cross-site Scripting
2023-02-20 00:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
34.8%
Related for GHSA-7H4W-6P98-R3WX