Description
There is a vulnerability in all angular versions before 1.5.0-beta.0, where after escaping the context of the web application, the web application delivers data to its users along with other trusted dynamic content, without validating it.
Remediation
References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14863
https://snyk.io/vuln/npm:angular:20150807
Related Vulnerabilities
CVE-2023-29202 Vulnerability in maven package org.xwiki.platform:xwiki-platform-rendering-macro-rss
CVE-2021-41183 Vulnerability in maven package org.webjars.npm:jquery-ui
CVE-2016-6347 Vulnerability in maven package org.jboss.resteasy:resteasy-jaxrs
CVE-2022-31160 Vulnerability in maven package org.fujion.webjars:jquery-ui
CVE-2014-9515 Vulnerability in maven package com.github.dozermapper:dozer-parent