Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-12635

Malicious code in bioql PyPI...

4.8CVSS5.1AI score0.00375EPSS
Exploits0References4
CVE
CVE
added 2025/06/04 4:32 p.m.184 views

CVE-2025-2336

CVE-2025-2336 concerns AngularJS ngSanitize: an improper sanitization flaw allows bypassing image source restrictions via the href and xlink:href attributes in SVG elements. The root cause is inadequate sanitization, which can lead to Content Spoofing and potentially degrade application performa...

4.8CVSS6.7AI score0.00354EPSS
Exploits0References4
Veracode
Veracode
added 2025/05/09 3:53 a.m.11 views

Content Spoofing

AngularJS is vulnerable to Content Spoofing. The vulnerability is due to improper sanitization of the 'href' and 'xlink:href' attributes in SVG elements, which allows attackers to bypass image source restrictions...

4.8CVSS6.6AI score0.00375EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/04/29 5:15 p.m.6 views

CVE-2025-0716

Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and also negatively affect...

4.8CVSS6.5AI score0.00375EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/04/29 4:26 p.m.4 views

CVE-2025-0716

Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and also negatively affect...

4.8CVSS6AI score0.00375EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/04/28 2:59 p.m.9 views

CVE-2024-8372

Improper sanitization of the value of the 'srcset' attribute in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing . This issue affects AngularJS versions 1.3.0-rc.4 and...

4.8CVSS4.9AI score0.00574EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2024/09/09 3:30 p.m.30 views

AngularJS allows attackers to bypass common image source restrictions

Improper sanitization of the value of the srcset attribute in HTML elements in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing . This issue affects all versions of...

4.8CVSS6.5AI score0.00599EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2024/09/09 3:15 p.m.22 views

CVE-2024-8372

Improper sanitization of the value of the 'srcset' attribute in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing . This issue affects AngularJS versions 1.3.0-rc.4 and...

4.8CVSS0.00574EPSS
Exploits1References4
OSV
OSV
added 2024/09/09 3:15 p.m.3 views

DEBIAN-CVE-2024-8372

Improper sanitization of the value of the 'srcset' attribute in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing . This issue affects AngularJS versions 1.3.0-rc.4 and...

4.3CVSS6.8AI score0.00574EPSS
Exploits1References1
Rows per page
Query Builder