Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1353 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/06/20 7:27 a.m.3 views

Malicious code in atomic-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a312917055a535347fc34c0b8dd11c2a947d7fa9fbfd5972cdfe7fac5d4f981d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSVadded 2022/06/20 7:27 a.m.6 views

MAL-2022-1937 Malicious code in cloudinary-sample-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 49694f2b1b48b5a28ba485c7808e655d8e6d97d0414106b4d99363edd6c3257a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/06/20 7:27 a.m.3 views

Malicious code in cloudinary-sample-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 49694f2b1b48b5a28ba485c7808e655d8e6d97d0414106b4d99363edd6c3257a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSVadded 2022/06/20 7:27 a.m.8 views

MAL-2022-1004 Malicious code in angular-cloudinary-photo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4b59796ba271976005dde455be31a416442de0369ccdf3a101759a3ccdcaea1a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSVadded 2022/06/20 7:27 a.m.8 views

MAL-2022-1161 Malicious code in atomic-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a312917055a535347fc34c0b8dd11c2a947d7fa9fbfd5972cdfe7fac5d4f981d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/06/20 7:27 a.m.3 views

Malicious code in angular-cloudinary-photo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4b59796ba271976005dde455be31a416442de0369ccdf3a101759a3ccdcaea1a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/06/20 7:27 a.m.3 views

Malicious code in frontegg-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d8f178114efbe21e062c2f4f30e82d413adeef06ec35e636e38b9d5fabf5f2c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSVadded 2022/06/20 7:27 a.m.12 views

MAL-2022-3218 Malicious code in frontegg-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d8f178114efbe21e062c2f4f30e82d413adeef06ec35e636e38b9d5fabf5f2c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
IBM Security Bulletins
IBM Security Bulletinsadded 2022/06/09 10:48 p.m.18 views

Security Bulletin: IBM Db2 Mirror for i is vulnerable to cross-site scripting due to Angular (220414)

Summary The IBM Db2 Mirror for i GUI uses the Angular web framework. The version of Angular used by IBM Db2 Mirror for i is vulnerable to cross-site scripting as described in the vulnerability details section. IBM has addressed the vulnerability for IBM Db2 Mirror for i by upgrading to Angular...

0.7AI score
Exploits0Affected Software3
RedhatCVE
RedhatCVEadded 2022/06/07 2:28 a.m.40 views

CVE-2021-4231

A flaw was found in the angular/core package. Affected versions of this package are vulnerable to Cross-site scripting XSS in development, with Server-side rendering SSR enabled...

5.4CVSS2.9AI score0.01199EPSS
Exploits0References3
vulnersOsv
vulnersOsvadded 2022/06/03 12:0 a.m.1 views

formio-workers (>=1.0.0 <=1.5.0), ng2-formio (>=1.0.0-rc.24 <=1.0.0-rc.28) +1 more potentially affected by CVE-2020-28246 via formio (=1.91.13)

formio NPM version =1.91.13 is affected by a known vulnerability. The following packages have a transitive dependency on formio and may be impacted: - formio-workers =1.0.0, =1.0.0-rc.24, =1.0.0-rc.28 - v-formio-custom-component =0.1.1 Source cves: CVE-2020-28246 Source advisory:...

9.8CVSS7.2AI score0.03455EPSS
Exploits0
Veracode
Veracodeadded 2022/05/27 4:47 a.m.31 views

Cross-Site Scripting (XSS)

@angular/core is vulnerable to cross-site scripting. The vulnerability exists in few methods due to not escaping the comment text which allows an attacker to inject and execute arbitrary javascript...

5.4CVSS3.1AI score0.01199EPSS
Exploits0References6Affected Software5
vulnersOsv
vulnersOsvadded 2022/05/27 12:1 a.m.1 views

@altenull/foret-ng (=1.0.0-0), @apipass/buttons (>=0.1.1 <=0.1.1-beta.10) +370 more potentially affected by CVE-2021-4231 via @angular/core (>=0.0.0-0 <=10.2.4)

@angular/core NPM version =0.0.0-0, =0.1.1, =0.1.1, =0.1.1, =0.1.1, =0.1.1, =0.0.0, =0.0.0, =0.0.0, =0.0.0, =0.0.2 - @clemanto/ng2-smart-table =1.7.3 and more Source cves: CVE-2021-4231 Source advisory: OSV:GHSA-C75V-2VQ8-878F...

5.4CVSS6.7AI score0.01199EPSS
Exploits0
Github Security Blog
Github Security Blogadded 2022/05/27 12:1 a.m.52 views

Angular vulnerable to Cross-site Scripting

A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to...

5.4CVSS5.1AI score0.01199EPSS
Exploits0References8Affected Software1
OSV
OSVadded 2022/05/27 12:1 a.m.32 views

GHSA-C75V-2VQ8-878F Angular vulnerable to Cross-site Scripting

A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to...

5.4CVSS5.1AI score0.01199EPSS
Exploits0References8
GitLab Advisory Database
GitLab Advisory Databaseadded 2022/05/27 12:0 a.m.67 views

Cross site scripting in Angular

A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to...

5.4CVSS2.2AI score0.01199EPSS
Exploits0References6Affected Software1
OSV
OSVadded 2022/05/26 2:15 p.m.39 views

CVE-2021-4231

A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to...

5.4CVSS5.3AI score
Exploits0References4
Prion
Prionadded 2022/05/26 2:15 p.m.33 views

Cross site scripting

A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to...

3.5CVSS5.9AI score0.01199EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2022/05/26 7:10 a.m.44 views

CVE-2021-4231 Angular Comment cross site scripting

A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to...

3.5CVSS6.3AI score0.01199EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2022/05/26 7:10 a.m.6 views

CVE-2021-4231 Angular Comment cross site scripting

A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to...

3.5CVSS5.6AI score0.01199EPSS
Exploits0References4
Rows per page
Query Builder