12 matches found
Security Bulletin: Due to use angular-1.8.2.min.js , IBM webMethods Integration Server is affected by multiple vulnerabilities.
Summary Multiple vulnerabilities were addressed in IBM webMethods Integration Server by upgrading the version of the Angular framework. Vulnerability Details CVEID:CVE-2025-0716 DESCRIPTION: Improper sanitization of the value of the 'href' and 'xlink:href' attributes in 'image' SVG elements in...
Linux Distros Unpatched Vulnerability : CVE-2025-0716
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS allows attackers to bypass common image source...
CVE-2025-0716
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and also negatively affect...
net.aequologica.neo:dagr-vebchar (=0.5.2-alpha), net.aequologica.neo:dagr-web (=0.5.2-alpha) +108 more potentially affected by CVE-2025-0716 via org.webjars.npm:angular (>=1.2.32 <=1.8.3)
org.webjars.npm:angular MAVEN version =1.2.32, =0.5.2, =0.5.2, =5.2.0-RC1, =5.2.0, =5.2.0, =5.2.0, =5.2.0, =0.4.0, =1.1.3 and more Source cves: CVE-2025-0716 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-9919775...
10.30.npm-learning (>=1.0.0 <=1.1.0), 2017_node (=1.0.0) +3307 more potentially affected by CVE-2025-0716 via angular (>=0.0.1 <=1.8.3)
angular NPM version =0.0.1, =1.0.0, =4.13.7-rc4, =1.103.1, =1.103.1, =1.102.4, =1.102.3, =1.102.3, =1.4.156, =1.0.3, =1.0.0, =1.0.0, =0.5.0, =0.5.2 and more Source cves: CVE-2025-0716 Source advisory: OSV:GHSA-J58C-WW9W-PWP5...
CVE-2025-0716
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and also negatively affect...
CVE-2025-0716
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and also negatively affect...
CVE-2025-0716
creationtimestamp| type| source ---|---|--- 2025-04-29 17:04:33+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114422334870286344 2025-04-29 19:50:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lny2ijvzjz2k 2025-04-29 21:01:21+00:00| seen| https://t.me/cvedetector/240...
CVE-2025-0716
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and also negatively affect...
CVE-2025-0716
CVE-2025-0716 is a vulnerability in AngularJS where improper sanitization of the href and xlink:href attributes in SVG elements can bypass image-source restrictions and enable Content Spoofing, potentially affecting performance due to large or slow-loading images. Affects all versions of Angular...
CVE-2025-0716 AngularJS improper sanitization in SVG '<image>' element
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and also negatively affect...
CVE-2025-0716 AngularJS improper sanitization in SVG '<image>' element
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and also negatively affect...