Cross-site Scripting (XSS)
Overview angularjs is a Affected versions of this package are vulnerable to Cross-site Scripting XSS. via the SVG element. The element can reference external SVG's same origin and can include xlink:href javascript urls or foreign object that can execute XSS. The change disallows elements in...