29 matches found
EUVD-2025-12635
Malicious code in bioql PyPI...
EUVD-2024-2837
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-8372
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper sanitization of the value of the 'srcset' attribute in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a...
AngularJS Incomplete Filtering of Special Elements vulnerability
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and...
DEBIAN-CVE-2025-2336
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and...
CVE-2025-2336
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and...
CVE-2025-2336
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and...
CVE-2025-2336 AngularJS improper sanitization in SVG '<image>' element with 'ngSanitize'
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and...
CVE-2025-2336
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and...
PT-2025-23829
Name of the Vulnerable Software and Affected Versions AngularJS versions 1.3.1 and later Description The issue is related to improper sanitization of the href and xlink:href attributes in SVG elements in the ngSanitize module. This allows attackers to bypass common image source restrictions,...
CVE-2022-27665
Reflected XSS via AngularJS sandbox escape expressions exists in Progress Ipswitch WSFTP Server 8.6.0. This can lead to execution of malicious code and commands on the client due to improper handling of user-provided input. By inputting malicious payloads in the subdirectory searchbar or Add fold...
The vulnerability of the AngularJS JavaScript framework for developing single-page applications relates to incomplete filtering of special elements, allowing attackers to perform cross-site scripting attacks.
The vulnerability of the AngularJS JavaScript framework for developing single-page applications is related to incomplete filtering of special elements. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...
Content Spoofing
AngularJS is vulnerable to Content Spoofing. The vulnerability is due to improper sanitization of the 'href' and 'xlink:href' attributes in SVG elements, which allows attackers to bypass image source restrictions...
CVE-2025-0716
CVE-2025-0716 is a vulnerability in AngularJS where improper sanitization of the href and xlink:href attributes in SVG elements can bypass image-source restrictions and enable Content Spoofing, potentially affecting performance due to large or slow-loading images. Affects all versions of Angular...
CVE-2025-0716
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and also negatively affect...
CVE-2024-8372
Improper sanitization of the value of the 'srcset' attribute in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing . This issue affects AngularJS versions 1.3.0-rc.4 and...
The vulnerability of the AngularJS JavaScript framework for developing single-page applications lies in its incomplete filtering of special elements. This allows attackers to bypass existing security restrictions and perform spear-phishing attacks.
The vulnerability of the AngularJS framework for developing single-page applications is related to incomplete filtering of special elements. Exploiting this vulnerability can allow attackers to bypass existing security restrictions and perform spear-phishing attacks...
The vulnerability of the AngularJS JavaScript framework for developing single-page applications stems from improper checking of input data’s security equivalence. This allows attackers to circumvent existing security restrictions and perform spear-phishing attacks.
The vulnerability of the AngularJS JavaScript framework for developing single-page applications is related to improper checking of unsafe equivalence of input data. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and execute arbitrary code...
DEBIAN-CVE-2024-8373
Improper sanitization of the value of the srcset attribute in HTML elements in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing . This issue affects all versions of...
AngularJS 安全漏洞
AngularJS is a TypeScript-based open source web application framework from AngularJS Open Source. A security vulnerability exists in AngularJS that stems from mishandling the value of the srcset attribute in the source HTML element, which could allow an attacker to bypass common image source...