Home > Vulnerability Database > WS-2018-0022

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

WS-2018-0022

Good to know:

Date: January 6, 2018

XSS vulnerability in angular.js (1.6.8 and before)

Language: JS

Severity Score

6.1

Related Resources (2)

Url: https://github.com/angular/angular.js/commit/b9ef6585e10477fbbf912a971fe0b390bca692a6

Url: https://www.mend.io/vulnerability-database/WS-2018-0022

Severity Score

6.1

Weakness Type (CWE)

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-79

Top Fix

Upgrade Version

Upgrade to version rogerclotet/angularjsbundle - 1.0.0;rogerclotet/angularjsbundle - no_fix;landa/app - 0.1;landa/app - no_fix;landa/app - 0.3.9;maioradv/admin2-cdn - no_fix;gzero/admin - v0.0.1;wpcloud/wp-stateless - dev-dependabot/composer/lib/Google/composer/composer-2.8.1;wpcloud/wp-stateless - dev-dependabot/composer/composer/installers-2.3.0;wpcloud/wp-stateless - v1.0.x-dev;wpcloud/wp-stateless - dev-develop-sec;wpcloud/wp-stateless - dev-latest;wpcloud/wp-stateless - dev-develop-test712;sunra/angularjs-symfony2-bundle - no_fix;UmbracoCmsVNB - no_fix;Spxus.Admin - no_fix;SignalR_eviTest - no_fix;dmstr/yii2-filemanager-widgets - dev-feature/filemanager-thumbnails-update;dmstr/yii2-filemanager-widgets - dev-feature/bugfix;dmstr/yii2-filemanager-widgets - dev-master;dmstr/yii2-filemanager-widgets - no_fix;mak.rocks.AngularJsMvcCrudAuthenticationGlobalization.client - no_fix;tellaw/sunshine-admin-bundle - v0.9.10;tellaw/sunshine-admin-bundle - v0.9.21;tellaw/sunshine-admin-bundle - v0.9.23;matomo/matomo - dev-prefix-monolog-syslog;matomo/matomo - dev-dev-15233-last-country-login-check;matomo/matomo - dev-dev-13900;matomo/matomo - dev-j-14782-shell-exec;matomo/matomo - dev-ddev-gitignore;matomo/matomo - dev-l3-63;matomo/matomo - dev-providerremoval;matomo/matomo - 2.8.0-rc1;matomo/matomo - dev-c3-attempt;matomo/matomo - dev-fix14370;matomo/matomo - dev-dev-14211;matomo/matomo - dev-m-16529;matomo/matomo - dev-gmdateint;matomo/matomo - dev-test-log-import-pr;matomo/matomo - 2.11.0-b2;matomo/matomo - 2.15.1-b10;matomo/matomo - dev-14190-archive-authtoken-post;matomo/matomo - dev-angular-migration2;matomo/matomo - dev-m-16152-dimension-deleted-cron-task-remove;matomo/matomo - dev-m-15262-avg-order-zero;matomo/matomo - dev-smsdoubleformat;newscoop/article-edit-screen - 1.0.0-alpha1;newscoop/article-edit-screen - v1.0.0;newscoop/article-edit-screen - v1.0.0-beta.11;newscoop/article-edit-screen - v1.2.0;newscoop/article-edit-screen - v1.1;newscoop/article-edit-screen - v1.0.1;Ionic-Framework-VS2015 - no_fix;os2display/screen-bundle - dev-dependabot/npm_and_yarn/yargs-parser-5.0.1;os2display/screen-bundle - dev-dependabot/npm_and_yarn/tar-4.4.15;os2display/screen-bundle - no_fix;Umbraco.BuildServerAssets - no_fix;Ucommerce-for-Kentico - no_fix;betteryourweb/laravel-custom - v3.0.0-beta-2;betteryourweb/laravel-custom - dev-develop;innova/angular-js-bundle - 2.0.1;innova/angular-js-bundle - no_fix;innova/angular-js-bundle - 1.0;HotTowel-Angular - 2.0.0-beta8;HotTowel-Angular - no_fix;newscoop/scoopwriter - v1.0.1;newscoop/scoopwriter - v1.0.0-beta.11;newscoop/scoopwriter - v1.2.0;newscoop/scoopwriter - v1.0.0;newscoop/scoopwriter - v1.1;newscoop/scoopwriter - 1.0.0-alpha1;someline/someline-starter - dev-development;someline/someline-starter - no_fix;someline/someline-starter - v0.0.1;coresys/corelibrary - no_fix;pi/pi - v2.8.0;pi/pi - no_fix;pi/pi - 2.5.0;giovdk21/yii-angularjs-helper - no_fix;spxus.start.umbraco - 0.3.6.4-b;spxus.start.umbraco - 0.3.6.4;AspSpaSilo-GH - no_fix;acosf/archersys - 1.0;piwik/piwik - dev-ddev-gitignore;piwik/piwik - dev-gmdateint;piwik/piwik - dev-dev-15233-last-country-login-check;piwik/piwik - dev-m-15322;piwik/piwik - dev-m-16529;piwik/piwik - dev-dev-14211;piwik/piwik - dev-j-14782-shell-exec;piwik/piwik - dev-prefix-monolog-syslog;piwik/piwik - 2.8.0-rc1;piwik/piwik - dev-fix14370;piwik/piwik - dev-l3-63;piwik/piwik - 2.11.0-b2;piwik/piwik - dev-dev-13900;piwik/piwik - dev-14190-archive-authtoken-post;piwik/piwik - dev-smsdoubleformat;piwik/piwik - dev-providerremoval;piwik/piwik - dev-m-16152-dimension-deleted-cron-task-remove;piwik/piwik - dev-angular-migration2;piwik/piwik - dev-c3-attempt;piwik/piwik - dev-test-log-import-pr;os2display/admin-bundle - 1.0.0;os2display/admin-bundle - no_fix;Ucommerce.Sitefinity - 9.6.1.22033;Ucommerce.Sitefinity - 8.4.2.20052;ngless - 0.7.0;happycoding/civicrm-core-for-drupal - no_fix;davbfr/cf - 2.5;davbfr/cf - 1.0;davbfr/cf - 2.7;AngularJS.Sanitize - 1.3.0-rc0;AngularJS.Sanitize - 1.6.9;AngularJS.Sanitize - 1.3.0-beta14;AngularJS.Sanitize - 1.2.18;DevTeam.Templates.Angular - no_fix;my-oos/my-oos - v2.3.9;my-oos/my-oos - v2.0.56;arx/arxmin - 5.0.1;chaplean/cms-bundle - no_fix;aryaduta/metronic-bundle - no_fix;colorgap/bowyer - v0.2.0;Grupa26.Starter - no_fix;TheMVCForum - 1.6.0;Simplr.Angular.Module.Structure - no_fix;skimia/angular-bundle - no_fix;Zac.Resource.Admin - no_fix;techstar-inc/ecommerce - v1.0.0;larakit/sf-angular-sanitize - no_fix;studioartlan/syng - no_fix;Fynix.Common.Web - 1.0.0.1;brix/admin-bundle - no_fix;happycoding/civicrm-library-for-drupal - no_fix;i9code/laravelmetronic - no_fix;angularjs - 1.6.9;i9code/laravelmetronic3 - no_fix;IonicVS2015 - no_fix;kratos/kratos - no_fix;kratos/kratos - 0.0.1a;kratos/kratos - 0;siddthartha/yii2-angular - 1.1;fion.modelerp.core - 1.0.344;Indeco.webApp - no_fix;uCommerce.Umbraco7 - 9.6.1.22033;UmbracoCms - 7.15.8;whitespace-se/matomo-core - 4.0.0;whitespace-se/matomo-core - 3.12.0;bike.net.modules.angular - no_fix;rhapsody-project/angular-js-bundle - no_fix;EmptyUmbracoMvc - no_fix;Ucommerce.Umbraco8 - 9.6.0.22019;innova/angularjs - 1.0;prestiggio/md - no_fix;claroline/front-end-bundle - 7.0.1;claroline/front-end-bundle - dev-update_daterangepicker;MyTestPackageDyrrahitis - no_fix;sagsoz06/adminlte-theme - no_fix;mak.rocks.AngularJsMvcCrud.client - no_fix;angularjs-seedfriendy - no_fix;icap/portfolio-bundle - 4.0.0;crashdiag - no_fix;tortuvshin/bella.mn - v1.0.0;Canknow.WebFrame - no_fix;mathsgod/alt - 5.0.0;mathsgod/alt - 4.7.9;angular-exui-editabledroplist - 1.0.4;MyAdmin - no_fix;webkid/cms - 0.1.6;soldotno/vanilla-enterprise-module - 1.0;Abp460.Template - no_fix;rota.spa - no_fix;nehakadam/calenstyle - no_fix;i9code/metronic - no_fix;NewDemoNugetPckg - no_fix;App.Fynix.Common.Web - no_fix;NYCLogin - no_fix;salimkamboh/yii2-angularjs - no_fix;deesoft/yii2-angular - 1.1;JDashMvc - no_fix;igeekspace/twothink - no_fix;undf/angularjsbundle - no_fix;Cireson.Platform.Extension.WebUi - no_fix;Westwind.Globalization.Web - no_fix;calibrate/civicrm-libraries - v1.0;nodediag - no_fix;TrimLocalization - no_fix;victoire/victoire - dev-master;victoire/victoire - dev-dependabot/npm_and_yarn/Bundle/UIBundle/Resources/config/marked-0.3.19;victoire/victoire - 2.2.1;chayka/core-wpp - no_fix;kewljuice/civicrm-libraries - no_fix;colorgap/brush - v0.2.0;titan-framework/sample-travel - no_fix;AngularJS.OnlyJS - 1.2.26;GAC.Client - no_fix;Ucommerce.Client.WebForms - 9.6.0.22019;opis-assets/angular - 1.5.9;mpl/matomo - 2.8.0;mpl/matomo - 4.0.0;III.Web.Core - no_fix;Crash.Diagnoser - no_fix;TemplateSemParar - no_fix;bryan-angularjs - no_fix;siripravi/nyiixta - no_fix;UmbracoCms-U4-5491 - no_fix;dreamfactory/df-api-docs-ui - 1.1.0;ConsorziMVC - no_fix;components/angular.js - 1.2.0;waas-hero/waas-builder-mu - no_fix;AdjustmentApp - no_fix;JDash.Mvc - no_fix;angular - 1.6.9;SPAngularAppTemplate - no_fix;guilleferrer/angularjsbundle - no_fix;IdentityManagement - no_fix;someline/someline-starter-app - no_fix;neoslive/hybridsearch - no_fix;neoslive/hybridsearch - 1.0.9;Node.JS.Diagnoser - no_fix;ewinslow/elgg-evan - 1.1;opensmarty/opensmarty-starter - no_fix;eng-mmarouf/metronic - no_fix;AngularAppTemplate - no_fix;xrow/xrowpiwik-ls - 1.3.0;AngularJsTypeScriptBase - no_fix;clh021/yii2-wechat_ionic1 - no_fix;boson/portal-bundle - no_fix;renatomefidf/sammui - v0.0.3;panda-coder/phpanda - dev-oldMaster;i9code/laravelmetronic2 - no_fix;prestiggio/medias - no_fix;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.5.X;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.5.X;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.5.X;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.5.X;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.5.X;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-sample-springboot:1.4.15;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.5.X;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.5.X;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:2.0.0;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;org.webjars.npm:angular-sanitize:1.6.9;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.5.X;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.5.X;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;org.webjars.bower:angular-sanitize:1.4.7;org.webjars.bower:angular-sanitize:1.5.10;org.webjars.bower:angular-sanitize:1.6.5;org.webjars.bower:angular-sanitize:1.6.7;org.webjars.bower:angular-sanitize:1.5.1;org.webjars.bower:angular-sanitize:1.4.12;org.webjars.bower:angular-sanitize:1.5.0-rc.1;org.webjars.bower:angular-sanitize:1.4.3;org.webjars.bower:angular-sanitize:1.4.0;org.webjars.bower:angular-sanitize:1.2.25;org.webjars.bower:angular-sanitize:1.3.10;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.5.X;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:2.0.2;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;io.hawt:hawtio-springboot:1.4.19;org.webjars.npm:angular-ui-router:0.2.14;org.fusesource.insight:insight-kibana3:no_fix;org.fusesource.insight:insight-kibana3:no_fix;org.fusesource.insight:insight-kibana3:no_fix;org.webjars.bower:angular-latest:1.3.16;org.webjars.bower:angular-latest:1.6.4;org.webjars.bower:angulerjs:1.4.0-beta.0;org.webjars.bower:angulerjs:1.4.0-rc.2;org.webjars.npm:angular-patternfly:5.0.1;org.apache.activemq:artemis-console:2.10.1;org.apache.activemq:artemis-console:2.12.0;org.apache.activemq:artemis-console:2.14.0;org.apache.activemq:artemis-console:2.10.0;org.webjars.npm:github-com-alexbeletsky-ng-notifications-bar:no_fix;org.webjars.bower:angular-1.1.6:1.4.0-beta.6;org.webjars.bower:github-com-leandropio-ng-fi-text:no_fix;org.webjars.bowergithub.angular:bower-angular-sanitize:1.6.0-rc.2;org.webjars.bower:github-com-angular-angular-js:v1.5.8;org.webjars.bower:satellizer:0.15.5;org.webjars.bower:angular-patternfly:no_fix;org.webjars.bower:angular-patternfly:3.23.1;org.webjars:angular-sanitize:1.2.16;org.webjars:angular-sanitize:no_fix;org.webjars.npm:github-com-angular-ui-ui-router:1.0.0-rc.1;org.keycloak:keycloak-forms-common-themes:1.0.5.Final;org.webjars:ionic:1.0.0-beta.2;org.webjars.npm:ng-twitter:no_fix;org.jboss.aerogear.unifiedpush:unifiedpush-auth-server:1.0.2;org.webjars:angularjs:1.6.9;org.webjars.npm:angular-strap:2.3.10

Learn More

CVSS v3.1

Base Score:	6.1
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	CHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

WS-2018-0022

Good to know:

Date: January 6, 2018

Language: JS

Severity Score

Related Resources (2)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?