Angular vulnerable to XSS in i18n attribute bindings

A Cross-Site Scripting XSS vulnerability has been identified in the Angular runtime and compiler. It occurs when the application uses a security-sensitive attribute for example href on an anchor tag together with Angular's ability to internationalize attributes. Enabling internationalization for...

PT-2023-16214 · WordPress · Real.Kit Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: real.Kit WordPress plugin versions prior to 5.1.1 Description: The issue concerns the real.Kit WordPress plugin, which does not properly validate and escape certain shortcode attributes before outputting them in a page or post. This could all...