Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
PeerigonAngular-expressions

3 matches found

CVE
CVEadded 2021/02/01 3:5 p.m.78 views

CVE-2021-21277

The CVE-2021-21277 issue affects angular-expressions prior to 1.1.2. Affected component: the expressions.compile(userControlledInput) path, where user input can bypass security via a complex payload (notably using the .constructor.constructor technique). In the browser, this could run arbitrary b...

8.8CVSS8.8AI score0.0273EPSS
CVE
CVEadded 2020/01/24 3:25 p.m.57 views

CVE-2020-5219

The CVE-2020-5219 entry concerns angular-expressions prior to version 1.0.1. The underlying issue is a remote code execution vulnerability triggered when user-supplied input is passed to expressions.compile(userControlledInput). In the browser, this can allow execution of arbitrary browser script...

8.8CVSS9AI score0.02393EPSS
CVE
CVEadded 2026/05/11 2:33 p.m.16 views

CVE-2026-44643

CVE-2026-44643 affects the standalone Angular Expressions module used with AngularJS. Before version 1.5.2, an attacker can craft a malicious expression using filters that escapes the sandbox and leads to arbitrary code execution on the system. The vulnerability is fixed in 1.5.2. Affected descri...

10CVSS6.2AI score0.00476EPSS