angular vulnerabilities

HTML enhanced for web apps

Latest version: 1.6.6

View on npm

Licenses detected

  • license: MIT >=0.0.1-1 <1.0.0,>=1.0.0
Vulnerability Vulnerable versions Snyk patch Published
  • M
JSONP Callback Attack 		<1.6.1 Not available 13 Feb, 2017
  • M
Content Security Policy (CSP) Bypass 		<1.5.9 >=1.5.0 Not available 23 Jan, 2017
  • M
Arbitrary Script Injection 		<1.2.30 >=1.0.0 Not available 23 Jan, 2017
  • M
Cross-site Scripting (XSS) 		<1.5.0-rc.2 >=1.3.0 Not available 23 Jan, 2017
  • M
Cross-site Scripting (XSS) 		<1.5.0-rc.0 Not available 23 Jan, 2017
  • M
Cross-site Scripting (XSS) 		<1.4.10 Not available 23 Jan, 2017
  • H
Cross-site Scripting (XSS) 		<1.5.0-beta.2 Not available 23 Jan, 2017
  • M
Clickjacking 		<1.5.0-beta.0 >=1.3.1 Not available 23 Jan, 2017
  • H
Cross-site Scripting (XSS) 		<1.5.0-beta.0 >=1.0.0 Not available 23 Jan, 2017
  • H
Arbitrary Code Execution 		<1.5.0-beta.2 Not available 23 Jan, 2017
  • M
Arbitrary Command Execution 		<1.3.2 Not available 23 Jan, 2017
  • H
Unsafe Object Deserialization 		<1.2.24 >=1.2.19 Not available 23 Jan, 2017
  • M
Cross-site Scripting (XSS) 		<1.3.0-rc.4 Not available 23 Jan, 2017
  • L
Arbitrary Code Execution 		<1.3.0 Not available 23 Jan, 2017
  • H
Protection Bypass 		<1.2.2 Not available 23 Jan, 2017
  • H
Arbitrary Script Injection 		<1.1.5 Not available 23 Jan, 2017
  • M
Cross-site Scripting (XSS) 		<1.2.0 >=1.0.0 Not available 23 Jan, 2017
  • M
Cross-site Scripting (XSS) 		<=1.1.5 Not available 23 Jan, 2017
Report a new vulnerability

Find out if you have vulnerabilities that put you at risk.

Test your code