Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-7h4w-6p98-r3wx: textAngular Cross-site Scripting vulnerability

textAngular is a text editor for Angular.js. Version 1.5.16 and prior are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. There are no known patches.

ghsa
#xss#vulnerability#js#git

textAngular Cross-site Scripting vulnerability

Moderate severity GitHub Reviewed Published Feb 21, 2023 to the GitHub Advisory Database • Updated Feb 22, 2023

Related news

CVE-2021-32854: GHSL-2021-1001: Copy-paste XSS in textAngular text editor - CVE-2021-32854

textAngular is a text editor for Angular.js. Version 1.5.16 and prior are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. There are no known patches.

ghsa: Latest News

GHSA-hqmp-g7ph-x543: TunnelVision - decloaking VPNs using DHCP