📦 Angular

This CVE describes a cross-site scripting (XSS) vulnerability in Angular's Template Compiler where the sanitization schema fails to properly handle href and xlink:href attributes in SVG <script> eleme...

A stored cross-site scripting (XSS) vulnerability in Angular's template compiler allows attackers to bypass Angular's built-in security sanitization by exploiting incomplete URL attribute classificati...

A reflected cross-site scripting vulnerability in CKEditor v46.1.0 and Angular v18.0.0 allows attackers to inject malicious scripts that execute in users' browsers when they visit specially crafted UR...