angular-redactor is vulnerable to cross-site scripting (XSS) attacks. The vulnerability exists due to the lack of sanitization of user input that is used in an eval
call.
CPE | Name | Operator | Version |
---|---|---|---|
angular-redactor | eq | 1.1.4 | |
angular-redactor | le | 1.1.7 | |
angular-redactor | le | 1.1.6 |