Exposição de Angular
JavaScript frameworks69
score de exposição
216.030
sites usam
0
em exploração
0
críticos
CVEs
30 resultadosCVE-2022-25869MEDIUMAll versions of the package angular; all versions of the package angularjs.core; all versions of the package angularjs are vulnerable to CroEPSS 5.3%CVE-2022-25844MEDIUMRegular Expression Denial of Service (ReDoS)EPSS 4.4%CVE-2024-21490HIGHThis affects versions of the package angular from 1.3.0. A regular expression used to split the value of the ng-srcset directive is vulnerabEPSS 1.8%CVE-2023-26116MEDIUMVersions of the package angular from 1.2.21 are vulnerable to Regular Expression Denial of Service (ReDoS) via the angular.copy() utility fuEPSS 1.7%CVE-2023-26117MEDIUMVersions of the package angular from 1.0.0 are vulnerable to Regular Expression Denial of Service (ReDoS) via the $resource service due to tEPSS 1.7%CVE-2023-26118MEDIUMVersions of the package angular from 1.4.9 are vulnerable to Regular Expression Denial of Service (ReDoS) via the <input type="url"> elementEPSS 1.7%CVE-2021-4231LOWAngular Comment cross site scriptingEPSS 1.1%CVE-2025-66035HIGHAngular HTTP Client Has XSRF Token Leakage via Protocol-Relative URLsEPSS 0.6%CVE-2026-22610HIGHAngular has XSS Vulnerability via Unsanitized SVG Script AttributesEPSS 0.4%CVE-2026-27970HIGHAngular i18n vulnerable to Cross-Site Scripting (XSS)EPSS 0.4%CVE-2026-54264HIGHAngular: Sensitive Header Leakage on Cross-Origin Redirects in Angular Service WorkerEPSS 0.4%CVE-2026-52725MEDIUMAngular Template and Dynamic Component Namespace Bypass leading to Cross-Site Scripting (XSS)EPSS 0.4%CVE-2025-66412HIGHAngular Stored XSS Vulnerability via SVG Animation, SVG URL and MathML AttributesEPSS 0.4%CVE-2026-50556HIGHAngular: Missing `<noscript>` Raw-Text Serialization Escaping leads to Cross-Site Scripting (XSS) in Angular SSREPSS 0.3%CVE-2026-50555HIGHAngular: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in @angular/platform-serverEPSS 0.3%CVE-2026-50557MEDIUMAngular: Template and Attribute Namespace Sanitization Bypass (XSS)EPSS 0.3%CVE-2025-59052HIGHAngular SSR: Global Platform Injector Race Condition Leads to Cross-Request Data LeakageEPSS 0.3%CVE-2026-54268HIGHAngular: Denial of Service (DoS) via OOM in Date Formatting (formatDate)EPSS 0.3%CVE-2026-54265MEDIUMAngular: Two-Way Property Binding Sanitization Bypass (XSS)EPSS 0.3%CVE-2026-46417HIGHAngular: SSRF via Hostname Hijacking in @angular/platform-serverEPSS 0.3%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →