Security Bulletin: Due to use angular-1.8.2.min.js , IBM webMethods Integration Server is affected by multiple vulnerabilities.

Summary Multiple vulnerabilities were addressed in IBM webMethods Integration Server by upgrading the version of the Angular framework. Vulnerability Details CVEID:CVE-2025-0716 DESCRIPTION: Improper sanitization of the value of the 'href' and 'xlink:href' attributes in 'image' SVG elements in...

Linux Distros Unpatched Vulnerability : CVE-2022-25869

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of the package angular; all versions of the package angularjs.core; all versions of the package angularjs are vulnerable to Cross-site Scripting XS...

Security Bulletin: IBM Storage Ceph is vulnerable to cross site scripting and denial of service via regular expressions in Grafana

Summary Grafana is used by IBM Storage Ceph as a metrics dashboard, requiring the use of angular to function. This bulletin identifies the steps to take to address the vulnerability in Grafana. CVE-2022-25869, CVE-2023-26118, CVE-2022-25844, CVE-2023-26116, CVE-2024-21490, CVE-2023-26117...

CVE-2022-25869 vulnerabilities

Vulnerabilities for packages: solr...

CVE-2022-25869 vulnerabilities

Vulnerabilities for packages: solr...

K000141459: Angular JS vulnerabilities CVE-2019-14863 and CVE-2022-25869

Security Advisory Description CVE-2019-14863 There is a vulnerability in all angular versions before 1.5.0-beta.0, where after escaping the context of the web application, the web application delivers data to its users along with other trusted dynamic content, without validating it. CVE-2022-2586...

F5 Networks BIG-IP : Angular JS vulnerabilities (K000141459)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3 / 17.5.1.1. It is, therefore, affected by multiple vulnerabilities as referenced in the K000141459 advisory. CVE-2019-14863There is a vulnerability in all angular versions before 1.5.0-beta.0, where after escaping t...

CVE-2024-25869

creationtimestamp| type| source ---|---|--- 2024-02-28 23:27:06+00:00| seen| https://t.me/ctinow/195975...

CVE-2024-25869

An Unrestricted File Upload vulnerability in CodeAstro Membership Management System in PHP v.1.0 allows a remote attacker to execute arbitrary code via upload of a crafted php file in the settings.php component...

Security Bulletin: Multiple vulnerabilities have been identified in AngularJS shipped with IBM Tivoli Netcool Impact

Summary AngularJS is shipped with IBM Tivoli Netcool Impact as part of its UI framework. Information about security vulnerabilities affecting AngularJS has been published in a security bulletin. Vulnerability Details CVEID:CVE-2023-26117 DESCRIPTION: AngularJS is vulnerable to a denial of service...

Security Bulletin: IBM Tivoli Netcool Impact is vulernable to cross-site scripting due to AngularJS (CVE-2022-25869)

Summary AngularJS is shipped with IBM Tivoli Netcool Impact as part of its UI framework. Information about a security vulnerability affecting AngularJS has been published in a security bulletin. Vulnerability Details CVEID:CVE-2022-25869 DESCRIPTION: Node.js angular module is vulnerable to...

Security Bulletin: Multiple Angular vulnerabilities affects IBM Tivoli Business Service Manager (CVE-2023-26116, CVE-2023-26117, CVE-2023-26118, CVE-2022-25869, CVE-2022-25844)

Summary Angular is shipped with IBM Tivoli Business Service Manager as a component of it's dashboard interface. Information about security vulnerabilities affecting Angular has been published in a security bulletin. Vulnerability Details CVEID:CVE-2023-26116 DESCRIPTION: AngularJS is vulnerable t...

CVE-2023-25869

CVE-2023-25869 affects Adobe Substance 3D Stager (versions 2.0.0 and earlier). The vulnerability is an out-of-bounds read while parsing a crafted file, which can allow code execution in the context of the current user. Exploitation requires user interaction (the victim must open a malicious file)...

Security Bulletin: Tivoli Business Service Manager is vulnerable to cross-site scripting due to improper validation in Angular (CVE-2022-25869)

Summary Angular is shipped with IBM Tivoli Business Service Manager as a component of it's dashboard interface. Information about a security vulnerability affecting Angular has been published in a security bulletin. Vulnerability Details CVEID:CVE-2022-25869 DESCRIPTION: Node.js angular module is...

CVE-2022-25869

creationtimestamp| type| source ---|---|--- 2022-07-16 00:20:41+00:00| seen| https://t.me/cibsecurity/46375 2025-06-30 21:00:03+00:00| published-proof-of-concept| Telegram/YEiFamPdgcqsNBKcTHrz6s6bZPTIwshB08cHvtzul5ZyUxA...

CVE-2022-25869

All versions of the package angular; all versions of the package angularjs.core; all versions of the package angularjs are vulnerable to Cross-site Scripting XSS due to insecure page caching in the Internet Explorer browser, which allows interpolation of elements...

CVE-2022-25869

All versions of the package angular; all versions of the package angularjs.core; all versions of the package angularjs are vulnerable to Cross-site Scripting XSS due to insecure page caching in the Internet Explorer browser, which allows interpolation of elements...

CVE-2022-25869

CVE-2022-25869 affects multiple Angular/AngularJS packages with an XSS through insecure IE page caching that allows textarea interpolation. Connected IBM advisory confirms impact on IBM Storage Copy Data Management: affected versions 2.2.0.0–2.2.26.0, with a fix available in 2.2.27.0 for Linux pl...

CVE-2022-25869

All versions of the package angular; all versions of the package angularjs.core; all versions of the package angularjs are vulnerable to Cross-site Scripting XSS due to insecure page caching in the Internet Explorer browser, which allows interpolation of elements...

10.30.npm-learning (>=1.0.0 <=1.1.0), 2017_node (=1.0.0) +3309 more potentially affected by CVE-2022-25869 via angular (>=0.0.1 <=1.8.3)

angular NPM version =0.0.1, =1.0.0, =4.13.7-rc4, =1.103.1, =1.103.1, =1.102.4, =1.102.3, =1.102.3, =1.4.156, =1.0.3, =1.0.0, =1.0.0, =0.5.0, =0.5.2 and more Source cves: CVE-2022-25869 Source advisory: SNYK:JS-ANGULAR-2949781...