6 matches found
CVE-2026-54268
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.17, and 20.3.25, a Denial of Service DoS vulnerability exists in the @angular/common package of the Angular framework. The formatDate function,...
GHSA-48R7-HPM6-GFXM @angular/common: Denial of Service (DoS) via OOM in Date Formatting (formatDate)
A Denial of Service DoS vulnerability exists in the @angular/common package of the Angular framework. The formatDate function, which is also utilized by the standard Angular DatePipe, does not properly limit or validate the length of the format parameter. When parsing a maliciously crafted,...
@angular/common: Denial of Service (DoS) via OOM in Date Formatting (formatDate)
A Denial of Service DoS vulnerability exists in the @angular/common package of the Angular framework. The formatDate function, which is also utilized by the standard Angular DatePipe, does not properly limit or validate the length of the format parameter. When parsing a maliciously crafted,...
PT-2026-49583
Name of the Vulnerable Software and Affected Versions Angular versions prior to 22.0.1 Angular versions prior to 21.2.17 Angular versions prior to 20.3.25 Description A Denial of Service DoS issue exists in the @angular/common package. The formatDate function, also used by the standard DatePipe,...
MAL-2024-2391 Malicious code in format-date (npm)
False positive caused by problematic ingestion. --- -= Per source details. Do not edit below this line.=-...
MAL-2024-1374 Malicious code in @ozon-ob-toolbox/format-date (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 99cb774b8b6118ad1c97aca951b1ac6bfc5814a661b3fea62fecd862204f47ea Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...