Lucene search
K

8 matches found

vulnersOsv
vulnersOsv
added 2025/06/04 6:30 p.m.7 views

com.github.grantlittle:bdd-reporting-server (>=0.1.5 <=0.1.7), com.github.grantlittle:bdd-reporting-service (=0.1.9) +59 more potentially affected by CVE-2025-2336 via org.webjars.bower:angular-sanitize (>=1.2.29 <=1.8.2)

org.webjars.bower:angular-sanitize MAVEN version =1.2.29, =0.1.5, =0.5.0, =0.5.0, =0.5.1, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.1 and more Source cves: CVE-2025-2336 Source advisory: SNYK:JAVA-ORGWEBJARSBOWER-10337226...

4.8CVSS7AI score0.00302EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/06/04 6:30 p.m.6 views

net.aequologica.neo:geppaequo-tags (>=0.5.3 <=0.6.0), net.aequologica.neo:geppaequo-web (>=0.5.3 <=0.6.0) +4 more potentially affected by CVE-2025-2336 via org.webjars.npm:angular-sanitize (>=1.5.0-beta.0 <=1.8.3)

org.webjars.npm:angular-sanitize MAVEN version =1.5.0-beta.0, =0.5.3, =0.5.3, =0.6.0 - org.webjars.npm:angular-auto-complete =1.7.4 - org.webjars.npm:angular-material-calendar =0.2.14 - org.webjars.npm:angular-schema-form =0.8.13 - org.webjars.npm:github-com-showdownjs-ng-showdown =1.1.0 Source...

4.8CVSS7AI score0.00302EPSS
Exploits0
NVD
NVD
added 2025/06/04 5:15 p.m.18 views

CVE-2025-2336

Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and...

4.8CVSS0.00302EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/06/04 5:15 p.m.6 views

CVE-2025-2336

Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and...

4.8CVSS7AI score0.00302EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/06/04 4:32 p.m.9 views

CVE-2025-2336 AngularJS improper sanitization in SVG '<image>' element with 'ngSanitize'

Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and...

4.8CVSS5AI score0.00302EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/06/04 4:32 p.m.10 views

CVE-2025-2336

Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and...

4.8CVSS6.8AI score0.00302EPSS
Exploits0
CVE
CVE
added 2025/06/04 4:32 p.m.196 views

CVE-2025-2336

CVE-2025-2336 concerns AngularJS ngSanitize: an improper sanitization flaw allows bypassing image source restrictions via the href and xlink:href attributes in SVG elements. The root cause is inadequate sanitization, which can lead to Content Spoofing and potentially degrade application performa...

4.8CVSS6.7AI score0.00302EPSS
Exploits0References4
OSV
OSV
added 2025/06/04 4:32 p.m.4 views

CVE-2025-2336 AngularJS improper sanitization in SVG '<image>' element with 'ngSanitize'

Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and...

4.8CVSS7AI score0.00302EPSS
Exploits0References8
Rows per page
Query Builder