Vulnerability DatabaseWS-2018-0022
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
WS-2018-0022
Published:May 19, 2026
Updated:May 19, 2026
XSS vulnerability in angular.js (1.6.8 and before)
Affected Packages
ngless (CONDA):
Affected version(s) >=0.5.1 <0.7.0
Fix Suggestion:
Update to version 0.7.0
angular (NPM):
Affected version(s) >=0.0.1-1 <1.6.9
Fix Suggestion:
Update to version 1.6.9
fynix.common.web (NUGET):
Affected version(s) =1.0.0 <1.0.0.1
Fix Suggestion:
Update to version 1.0.0.1
spxus.admin (NUGET):
Affected version(s) >=7.12.2 <=7.12.2.6-a
Fix Suggestion:
Update to version no_fix
crash.diagnoser (NUGET):
Affected version(s) =1.3.0.1
Fix Suggestion:
Update to version no_fix
angularjs.onlyjs (NUGET):
Affected version(s) =1.2.15 <1.2.26
Fix Suggestion:
Update to version 1.2.26
angularapptemplate (NUGET):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
abp460.template (NUGET):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
myadmin (NUGET):
Affected version(s) >=7.12.2-a <=7.12.2-d
Fix Suggestion:
Update to version no_fix
ucommerce.sitefinity (NUGET):
Affected version(s) >=7.17.0.18149 <8.4.2.20052
Fix Suggestion:
Update to version 8.4.2.20052
canknow.webframe (NUGET):
Affected version(s) >=1.0.0 <=1.0.1
Fix Suggestion:
Update to version no_fix
fion.modelerp.core (NUGET):
Affected version(s) >=1.0.0 <1.0.344
Fix Suggestion:
Update to version 1.0.344
angularjs-seedfriendy (NUGET):
Affected version(s) =1.2.0-RC2
Fix Suggestion:
Update to version no_fix
gac.client (NUGET):
Affected version(s) >=1.0.1 <=1.0.2
Fix Suggestion:
Update to version no_fix
bike.net.modules.angular (NUGET):
Affected version(s) =0.0.0.8-alfa
Fix Suggestion:
Update to version no_fix
angularjs.sanitize (NUGET):
Affected version(s) >=1.2.0-rc2 <1.2.18
Fix Suggestion:
Update to version 1.2.18
newdemonugetpckg (NUGET):
Affected version(s) >=1.0.0.1 <=1.0.0.6
Fix Suggestion:
Update to version no_fix
iii.web.core (NUGET):
Affected version(s) >=1.0.0 <=1.0.7
Fix Suggestion:
Update to version no_fix
ionic-framework-vs2015 (NUGET):
Affected version(s) >=0.1.0 <=0.2.0
Fix Suggestion:
Update to version no_fix
spxus.start.umbraco (NUGET):
Affected version(s) =0.3.6.4-a <0.3.6.4-b
Fix Suggestion:
Update to version 0.3.6.4-b
angular-exui-editabledroplist (NUGET):
Affected version(s) =1.0.3 <1.0.4
Fix Suggestion:
Update to version 1.0.4
signalr_evitest (NUGET):
Affected version(s) >=1.0.0 <=3.0.0
Fix Suggestion:
Update to version no_fix
angularjs.sanitize (NUGET):
Affected version(s) >=1.3.0-beta2 <1.3.0-rc0
Fix Suggestion:
Update to version 1.3.0-rc0
spangularapptemplate (NUGET):
Affected version(s) >=4.0.0 <=5.0.0
Fix Suggestion:
Update to version no_fix
consorzimvc (NUGET):
Affected version(s) =2.0.0
Fix Suggestion:
Update to version no_fix
trimlocalization (NUGET):
Affected version(s) =1.0.3
Fix Suggestion:
Update to version no_fix
aspspasilo-gh (NUGET):
Affected version(s) >=1.2.0 <=1.2.2
Fix Suggestion:
Update to version no_fix
mak.rocks.angularjsmvccrud.client (NUGET):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
rota.spa (NUGET):
Affected version(s) >=1.2.9-beta1 <=1.5.6
Fix Suggestion:
Update to version no_fix
ionicvs2015 (NUGET):
Affected version(s) >=0.3.0 <=1.1.0
Fix Suggestion:
Update to version no_fix
nodediag (NUGET):
Affected version(s) >=1.1.0.2 <=1.1.0.3
Fix Suggestion:
Update to version no_fix
grupa26.starter (NUGET):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
node.js.diagnoser (NUGET):
Affected version(s) =1.1.0.2
Fix Suggestion:
Update to version no_fix
nyclogin (NUGET):
Affected version(s) >=1.0.0.7 <=1.0.0.17
Fix Suggestion:
Update to version no_fix
ucommerce.client.webforms (NUGET):
Affected version(s) >=7.19.0.18260 <9.6.0.22019
Fix Suggestion:
Update to version 9.6.0.22019
angularjstypescriptbase (NUGET):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
simplr.angular.module.structure (NUGET):
Affected version(s) >=0.0.2 <=0.0.2.6
Fix Suggestion:
Update to version no_fix
themvcforum (NUGET):
Affected version(s) =1.5.0 <1.6.0
Fix Suggestion:
Update to version 1.6.0
umbracocms (NUGET):
Affected version(s) >=7.0.0-rc <7.15.8
Fix Suggestion:
Update to version 7.15.8
identitymanagement (NUGET):
Affected version(s) >=1.0.0 <=1.0.1
Fix Suggestion:
Update to version no_fix
hottowel-angular (NUGET):
Affected version(s) >=2.0.0-beta3 <2.0.0-beta8
Fix Suggestion:
Update to version 2.0.0-beta8
indeco.webapp (NUGET):
Affected version(s) >=1.0.0 <=1.0.3
Fix Suggestion:
Update to version no_fix
crashdiag (NUGET):
Affected version(s) >=1.3.0.1 <=1.3.0.3
Fix Suggestion:
Update to version no_fix
umbraco.buildserverassets (NUGET):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
ucommerce.umbraco8 (NUGET):
Affected version(s) >=8.2.0.19157 <9.6.0.22019
Fix Suggestion:
Update to version 9.6.0.22019
zac.resource.admin (NUGET):
Affected version(s) >=0.0.0.1 <=0.0.0.10
Fix Suggestion:
Update to version no_fix
angularjs.sanitize (NUGET):
Affected version(s) >=1.3.0 <1.6.9
Fix Suggestion:
Update to version 1.6.9
cireson.platform.extension.webui (NUGET):
Affected version(s) >=0.1.0-rc0098 <=1.0.0-alpha0001
Fix Suggestion:
Update to version no_fix
devteam.templates.angular (NUGET):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
hottowel-angular (NUGET):
Affected version(s) =2.0.0-beta9
Fix Suggestion:
Update to version no_fix
mak.rocks.angularjsmvccrudauthenticationglobalization.client (NUGET):
Affected version(s) >=1.0.0 <=1.0.1
Fix Suggestion:
Update to version no_fix
adjustmentapp (NUGET):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
ucommerce.umbraco7 (NUGET):
Affected version(s) >=7.0.6.16104 <9.6.1.22033
Fix Suggestion:
Update to version 9.6.1.22033
umbracocms-u4-5491 (NUGET):
Affected version(s) >=7.1.8 <=7.1.8.1
Fix Suggestion:
Update to version no_fix
spxus.start.umbraco (NUGET):
Affected version(s) >=0.0.3 <0.3.6.4
Fix Suggestion:
Update to version 0.3.6.4
westwind.globalization.web (NUGET):
Affected version(s) >=2.0.4-beta1 <=3.0.5
Fix Suggestion:
Update to version no_fix
bryan-angularjs (NUGET):
Affected version(s) =1.2.9
Fix Suggestion:
Update to version no_fix
jdash.mvc (NUGET):
Affected version(s) >=1.0.0 <=1.0.0.1
Fix Suggestion:
Update to version no_fix
ucommerce.sitefinity (NUGET):
Affected version(s) >=9.1.0.20154 <9.6.1.22033
Fix Suggestion:
Update to version 9.6.1.22033
jdashmvc (NUGET):
Affected version(s) >=1.5.0 <=1.7.0
Fix Suggestion:
Update to version no_fix
angularjs (NUGET):
Affected version(s) >=1.0.0 <1.6.9
Fix Suggestion:
Update to version 1.6.9
angularjs.sanitize (NUGET):
Affected version(s) >=1.2.27 <1.3.0-beta14
Fix Suggestion:
Update to version 1.3.0-beta14
app.fynix.common.web (NUGET):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
ucommerce-for-kentico (NUGET):
Affected version(s) >=7.9.0.17307 <=8.4.0.19345
Fix Suggestion:
Update to version no_fix
templatesemparar (NUGET):
Affected version(s) >=1.0.0 <=1.0.1
Fix Suggestion:
Update to version no_fix
emptyumbracomvc (NUGET):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
mytestpackagedyrrahitis (NUGET):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
someline/someline-starter-app (PHP):
Affected version(s) >=dev-master <=v1.0.2
Fix Suggestion:
Update to version no_fix
newscoop/scoopwriter (PHP):
Affected version(s) =1.0.1 <v1.0.1
Fix Suggestion:
Update to version v1.0.1
matomo/matomo (PHP):
Affected version(s) =13880.x-dev <dev-dev-13900
Fix Suggestion:
Update to version dev-dev-13900
i9code/metronic (PHP):
Affected version(s) >=dev-dependabot/npm_and_yarn/resources/assets/global/plugins/jquery.appendGrid/acorn-6.4.1 <=dev-master
Fix Suggestion:
Update to version no_fix
kratos/kratos (PHP):
Affected version(s) =0.0.1 <0.0.1a
Fix Suggestion:
Update to version 0.0.1a
innova/angular-js-bundle (PHP):
Affected version(s) =dev-master <1.0
Fix Suggestion:
Update to version 1.0
matomo/matomo (PHP):
Affected version(s) >=3.0.1 <dev-l3-63
Fix Suggestion:
Update to version dev-l3-63
titan-framework/sample-travel (PHP):
Affected version(s) >=dev-master <=1.16.09-p5
Fix Suggestion:
Update to version no_fix
mathsgod/alt (PHP):
Affected version(s) =4.7.7 <4.7.9
Fix Suggestion:
Update to version 4.7.9
piwik/piwik (PHP):
Affected version(s) =dev-15220-enable-fingers-crossed <dev-dev-15233-last-country-login-check
Fix Suggestion:
Update to version dev-dev-15233-last-country-login-check
matomo/matomo (PHP):
Affected version(s) =dev-test-date-tweaks <dev-test-log-import-pr
Fix Suggestion:
Update to version dev-test-log-import-pr
tellaw/sunshine-admin-bundle (PHP):
Affected version(s) >=v0.9.11 <v0.9.21
Fix Suggestion:
Update to version v0.9.21
dreamfactory/df-api-docs-ui (PHP):
Affected version(s) >=1.0.0 <1.1.0
Fix Suggestion:
Update to version 1.1.0
neoslive/hybridsearch (PHP):
Affected version(s) >=1.0.10 <=1.1.44
Fix Suggestion:
Update to version no_fix
larakit/sf-angular-sanitize (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
piwik/piwik (PHP):
Affected version(s) =dev-14178_2 <dev-14190-archive-authtoken-post
Fix Suggestion:
Update to version dev-14190-archive-authtoken-post
innova/angular-js-bundle (PHP):
Affected version(s) >=5.0.0 <=5.1.0
Fix Suggestion:
Update to version no_fix
matomo/matomo (PHP):
Affected version(s) =dev-issue_14764 <dev-j-14782-shell-exec
Fix Suggestion:
Update to version dev-j-14782-shell-exec
piwik/piwik (PHP):
Affected version(s) =dev-globalscache <dev-gmdateint
Fix Suggestion:
Update to version dev-gmdateint
piwik/piwik (PHP):
Affected version(s) =dev-2.x-dev <dev-angular-migration2
Fix Suggestion:
Update to version dev-angular-migration2
wpcloud/wp-stateless (PHP):
Affected version(s) =dev-revert-455-develop-alim <dev-develop-test712
Fix Suggestion:
Update to version dev-develop-test712
someline/someline-starter (PHP):
Affected version(s) =dev-master <v0.0.1
Fix Suggestion:
Update to version v0.0.1
i9code/laravelmetronic2 (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
matomo/matomo (PHP):
Affected version(s) =dev-profiles <dev-providerremoval
Fix Suggestion:
Update to version dev-providerremoval
neoslive/hybridsearch (PHP):
Affected version(s) >=dev-master <1.0.9
Fix Suggestion:
Update to version 1.0.9
piwik/piwik (PHP):
Affected version(s) >=2.1.1-b1 <2.8.0-rc1
Fix Suggestion:
Update to version 2.8.0-rc1
landa/app (PHP):
Affected version(s) >=0.3.1 <0.3.9
Fix Suggestion:
Update to version 0.3.9
soldotno/vanilla-enterprise-module (PHP):
Affected version(s) =dev-master <1.0
Fix Suggestion:
Update to version 1.0
chaplean/cms-bundle (PHP):
Affected version(s) >=dev-dev <=v8.0.3
Fix Suggestion:
Update to version no_fix
dmstr/yii2-filemanager-widgets (PHP):
Affected version(s) >=dev-feature/scoped-less <dev-master
Fix Suggestion:
Update to version dev-master
coresys/corelibrary (PHP):
Affected version(s) >=dev-master <=1.0.1
Fix Suggestion:
Update to version no_fix
prestiggio/md (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
piwik/piwik (PHP):
Affected version(s) =dev-poc_manage_apps <dev-prefix-monolog-syslog
Fix Suggestion:
Update to version dev-prefix-monolog-syslog
piwik/piwik (PHP):
Affected version(s) =dev-dbipfiles <dev-ddev-gitignore
Fix Suggestion:
Update to version dev-ddev-gitignore
dmstr/yii2-filemanager-widgets (PHP):
Affected version(s) >=dev-dev/input-widget <dev-feature/bugfix
Fix Suggestion:
Update to version dev-feature/bugfix
newscoop/scoopwriter (PHP):
Affected version(s) >=1.0.0-beta.4 <v1.0.0
Fix Suggestion:
Update to version v1.0.0
brix/admin-bundle (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
piwik/piwik (PHP):
Affected version(s) >=3.0.1 <dev-l3-63
Fix Suggestion:
Update to version dev-l3-63
piwik/piwik (PHP):
Affected version(s) =14208.x-dev <dev-dev-14211
Fix Suggestion:
Update to version dev-dev-14211
piwik/piwik (PHP):
Affected version(s) =15240.x-dev <dev-m-15322
Fix Suggestion:
Update to version dev-m-15322
guilleferrer/angularjsbundle (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
maioradv/admin2-cdn (PHP):
Affected version(s) >=dev-main <=v1.0.3
Fix Suggestion:
Update to version no_fix
tellaw/sunshine-admin-bundle (PHP):
Affected version(s) =v0.9.22 <v0.9.23
Fix Suggestion:
Update to version v0.9.23
piwik/piwik (PHP):
Affected version(s) =14267.x-dev <dev-fix14370
Fix Suggestion:
Update to version dev-fix14370
wpcloud/wp-stateless (PHP):
Affected version(s) >=v2.3.x-dev <dev-dependabot/composer/lib/Google/composer/composer-2.8.1
Fix Suggestion:
Update to version dev-dependabot/composer/lib/Google/composer/composer-2.8.1
newscoop/scoopwriter (PHP):
Affected version(s) =1.0.0-beta.11 <v1.0.0-beta.11
Fix Suggestion:
Update to version v1.0.0-beta.11
arx/arxmin (PHP):
Affected version(s) >=4.2.0 <5.0.1
Fix Suggestion:
Update to version 5.0.1
kratos/kratos (PHP):
Affected version(s) =0.0.1b
Fix Suggestion:
Update to version no_fix
matomo/matomo (PHP):
Affected version(s) =dev-globalscache <dev-gmdateint
Fix Suggestion:
Update to version dev-gmdateint
sagsoz06/adminlte-theme (PHP):
Affected version(s) >=dev-master <=2.1.9
Fix Suggestion:
Update to version no_fix
someline/someline-starter (PHP):
Affected version(s) =v0.8.2
Fix Suggestion:
Update to version no_fix
mpl/matomo (PHP):
Affected version(s) >=2.2.0 <2.8.0
Fix Suggestion:
Update to version 2.8.0
piwik/piwik (PHP):
Affected version(s) =dev-profiles <dev-providerremoval
Fix Suggestion:
Update to version dev-providerremoval
os2display/screen-bundle (PHP):
Affected version(s) =dev-dependabot/npm_and_yarn/y18n-3.2.2
Fix Suggestion:
Update to version no_fix
calibrate/civicrm-libraries (PHP):
Affected version(s) =dev-master <v1.0
Fix Suggestion:
Update to version v1.0
landa/app (PHP):
Affected version(s) >=dev-API <0.1
Fix Suggestion:
Update to version 0.1
wpcloud/wp-stateless (PHP):
Affected version(s) =dev-hotfix <dev-latest
Fix Suggestion:
Update to version dev-latest
piwik/piwik (PHP):
Affected version(s) =dev-test-date-tweaks <dev-test-log-import-pr
Fix Suggestion:
Update to version dev-test-log-import-pr
matomo/matomo (PHP):
Affected version(s) =dev-dbipfiles <dev-ddev-gitignore
Fix Suggestion:
Update to version dev-ddev-gitignore
kratos/kratos (PHP):
Affected version(s) =dev-master <0
Fix Suggestion:
Update to version 0
colorgap/bowyer (PHP):
Affected version(s) =dev-master <v0.2.0
Fix Suggestion:
Update to version v0.2.0
acosf/archersys (PHP):
Affected version(s) >=dev-hdddwinstudent <1.0
Fix Suggestion:
Update to version 1.0
matomo/matomo (PHP):
Affected version(s) >=2.11.0-b4 <2.15.1-b10
Fix Suggestion:
Update to version 2.15.1-b10
my-oos/my-oos (PHP):
Affected version(s) >=v2.0.36 <v2.0.56
Fix Suggestion:
Update to version v2.0.56
xrow/xrowpiwik-ls (PHP):
Affected version(s) >=1.1 <1.3.0
Fix Suggestion:
Update to version 1.3.0
opis-assets/angular (PHP):
Affected version(s) =dev-master <1.5.9
Fix Suggestion:
Update to version 1.5.9
os2display/admin-bundle (PHP):
Affected version(s) >=2.1.0 <=2.2.1
Fix Suggestion:
Update to version no_fix
colorgap/brush (PHP):
Affected version(s) =dev-master <v0.2.0
Fix Suggestion:
Update to version v0.2.0
renatomefidf/sammui (PHP):
Affected version(s) >=v0.0.1 <v0.0.3
Fix Suggestion:
Update to version v0.0.3
matomo/matomo (PHP):
Affected version(s) =15240.x-dev <dev-m-15262-avg-order-zero
Fix Suggestion:
Update to version dev-m-15262-avg-order-zero
newscoop/article-edit-screen (PHP):
Affected version(s) =1.2.0 <v1.2.0
Fix Suggestion:
Update to version v1.2.0
sunra/angularjs-symfony2-bundle (PHP):
Affected version(s) >=dev-master <=v1.5.5
Fix Suggestion:
Update to version no_fix
davbfr/cf (PHP):
Affected version(s) =dev-master <1.0
Fix Suggestion:
Update to version 1.0
clh021/yii2-wechat_ionic1 (PHP):
Affected version(s) >=dev-master <=0.0.1
Fix Suggestion:
Update to version no_fix
components/angular.js (PHP):
Affected version(s) =dev-master <1.2.0
Fix Suggestion:
Update to version 1.2.0
victoire/victoire (PHP):
Affected version(s) =dev-remove-swiftmailer-dependancy <dev-dependabot/npm_and_yarn/Bundle/UIBundle/Resources/config/marked-0.3.19
Fix Suggestion:
Update to version dev-dependabot/npm_and_yarn/Bundle/UIBundle/Resources/config/marked-0.3.19
matomo/matomo (PHP):
Affected version(s) >=2.1.1-b1 <2.8.0-rc1
Fix Suggestion:
Update to version 2.8.0-rc1
panda-coder/phpanda (PHP):
Affected version(s) =dev-master <dev-oldMaster
Fix Suggestion:
Update to version dev-oldMaster
innova/angular-js-bundle (PHP):
Affected version(s) =2.0.0 <2.0.1
Fix Suggestion:
Update to version 2.0.1
piwik/piwik (PHP):
Affected version(s) >=2.11.0-rc1 <2.11.0-b2
Fix Suggestion:
Update to version 2.11.0-b2
siddthartha/yii2-angular (PHP):
Affected version(s) =1.0.0 <1.1
Fix Suggestion:
Update to version 1.1
happycoding/civicrm-core-for-drupal (PHP):
Affected version(s) >=dev-dev <=5.14.1-RC1
Fix Suggestion:
Update to version no_fix
skimia/angular-bundle (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
matomo/matomo (PHP):
Affected version(s) =dev-m15991 <dev-m-16152-dimension-deleted-cron-task-remove
Fix Suggestion:
Update to version dev-m-16152-dimension-deleted-cron-task-remove
siripravi/nyiixta (PHP):
Affected version(s) =dev-main
Fix Suggestion:
Update to version no_fix
piwik/piwik (PHP):
Affected version(s) =dev-issue_14764 <dev-j-14782-shell-exec
Fix Suggestion:
Update to version dev-j-14782-shell-exec
newscoop/article-edit-screen (PHP):
Affected version(s) >=1.0.0-beta.4 <v1.0.0
Fix Suggestion:
Update to version v1.0.0
piwik/piwik (PHP):
Affected version(s) =13880.x-dev <dev-dev-13900
Fix Suggestion:
Update to version dev-dev-13900
davbfr/cf (PHP):
Affected version(s) =2.6 <2.7
Fix Suggestion:
Update to version 2.7
dmstr/yii2-filemanager-widgets (PHP):
Affected version(s) =dev-feature/custom-item-urls <dev-feature/filemanager-thumbnails-update
Fix Suggestion:
Update to version dev-feature/filemanager-thumbnails-update
matomo/matomo (PHP):
Affected version(s) =14208.x-dev <dev-dev-14211
Fix Suggestion:
Update to version dev-dev-14211
claroline/front-end-bundle (PHP):
Affected version(s) =dev-master <dev-update_daterangepicker
Fix Suggestion:
Update to version dev-update_daterangepicker
waas-hero/waas-builder-mu (PHP):
Affected version(s) >=dev-developers <=v0.2-alpha
Fix Suggestion:
Update to version no_fix
nehakadam/calenstyle (PHP):
Affected version(s) =2.0.7
Fix Suggestion:
Update to version no_fix
matomo/matomo (PHP):
Affected version(s) =dev-14178_2 <dev-14190-archive-authtoken-post
Fix Suggestion:
Update to version dev-14190-archive-authtoken-post
ewinslow/elgg-evan (PHP):
Affected version(s) =dev-master <1.1
Fix Suggestion:
Update to version 1.1
piwik/piwik (PHP):
Affected version(s) =dev-16510-icons-alignment-matomo3 <dev-m-16529
Fix Suggestion:
Update to version dev-m-16529
deesoft/yii2-angular (PHP):
Affected version(s) =1.0.0 <1.1
Fix Suggestion:
Update to version 1.1
igeekspace/twothink (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
kewljuice/civicrm-libraries (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
my-oos/my-oos (PHP):
Affected version(s) >=v2.3.3 <v2.3.9
Fix Suggestion:
Update to version v2.3.9
whitespace-se/matomo-core (PHP):
Affected version(s) >=dev-feature/code-of-conduct <3.12.0
Fix Suggestion:
Update to version 3.12.0
mpl/matomo (PHP):
Affected version(s) >=2.11.0 <4.0.0
Fix Suggestion:
Update to version 4.0.0
rogerclotet/angularjsbundle (PHP):
Affected version(s) >=1.0.1 <=1.0.4
Fix Suggestion:
Update to version no_fix
mathsgod/alt (PHP):
Affected version(s) =4.15.0 <5.0.0
Fix Suggestion:
Update to version 5.0.0
matomo/matomo (PHP):
Affected version(s) =dev-15220-enable-fingers-crossed <dev-dev-15233-last-country-login-check
Fix Suggestion:
Update to version dev-dev-15233-last-country-login-check
wpcloud/wp-stateless (PHP):
Affected version(s) =dev-multisite <v1.0.x-dev
Fix Suggestion:
Update to version v1.0.x-dev
i9code/laravelmetronic3 (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
tellaw/sunshine-admin-bundle (PHP):
Affected version(s) >=v0.9.0 <v0.9.10
Fix Suggestion:
Update to version v0.9.10
os2display/admin-bundle (PHP):
Affected version(s) =dev-master <1.0.0
Fix Suggestion:
Update to version 1.0.0
webkid/cms (PHP):
Affected version(s) >=0.1.0 <0.1.6
Fix Suggestion:
Update to version 0.1.6
studioartlan/syng (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
opensmarty/opensmarty-starter (PHP):
Affected version(s) >=dev-master <=v1.0.0
Fix Suggestion:
Update to version no_fix
matomo/matomo (PHP):
Affected version(s) =dev-poc_manage_apps <dev-prefix-monolog-syslog
Fix Suggestion:
Update to version dev-prefix-monolog-syslog
piwik/piwik (PHP):
Affected version(s) =dev-m15991 <dev-m-16152-dimension-deleted-cron-task-remove
Fix Suggestion:
Update to version dev-m-16152-dimension-deleted-cron-task-remove
matomo/matomo (PHP):
Affected version(s) =dev-2.x-dev <dev-angular-migration2
Fix Suggestion:
Update to version dev-angular-migration2
piwik/piwik (PHP):
Affected version(s) =dev-slowtests <dev-smsdoubleformat
Fix Suggestion:
Update to version dev-smsdoubleformat
tortuvshin/bella.mn (PHP):
Affected version(s) >=dev-core <v1.0.0
Fix Suggestion:
Update to version v1.0.0
giovdk21/yii-angularjs-helper (PHP):
Affected version(s) >=dev-master <=0.3.1
Fix Suggestion:
Update to version no_fix
rhapsody-project/angular-js-bundle (PHP):
Affected version(s) >=dev-master <=1.2.16
Fix Suggestion:
Update to version no_fix
matomo/matomo (PHP):
Affected version(s) >=2.11.0-rc1 <2.11.0-b2
Fix Suggestion:
Update to version 2.11.0-b2
chayka/core-wpp (PHP):
Affected version(s) >=dev-dev <=dev-master
Fix Suggestion:
Update to version no_fix
claroline/front-end-bundle (PHP):
Affected version(s) =dev-7.x-test <7.0.1
Fix Suggestion:
Update to version 7.0.1
newscoop/article-edit-screen (PHP):
Affected version(s) =dev-master <1.0.0-alpha1
Fix Suggestion:
Update to version 1.0.0-alpha1
pi/pi (PHP):
Affected version(s) >=v2.6.0-alpha1 <v2.8.0
Fix Suggestion:
Update to version v2.8.0
matomo/matomo (PHP):
Affected version(s) =dev-16510-icons-alignment-matomo3 <dev-m-16529
Fix Suggestion:
Update to version dev-m-16529
whitespace-se/matomo-core (PHP):
Affected version(s) >=3.12.x-dev <4.0.0
Fix Suggestion:
Update to version 4.0.0
undf/angularjsbundle (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
newscoop/article-edit-screen (PHP):
Affected version(s) =1.0.0-beta.11 <v1.0.0-beta.11
Fix Suggestion:
Update to version v1.0.0-beta.11
newscoop/scoopwriter (PHP):
Affected version(s) =1.1.0 <v1.1
Fix Suggestion:
Update to version v1.1
eng-mmarouf/metronic (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
newscoop/article-edit-screen (PHP):
Affected version(s) =1.0.1 <v1.0.1
Fix Suggestion:
Update to version v1.0.1
wpcloud/wp-stateless (PHP):
Affected version(s) =dev-develop-maxim <dev-develop-sec
Fix Suggestion:
Update to version dev-develop-sec
rogerclotet/angularjsbundle (PHP):
Affected version(s) >=dev-develop <1.0.0
Fix Suggestion:
Update to version 1.0.0
victoire/victoire (PHP):
Affected version(s) =2.2.x-dev <2.2.1
Fix Suggestion:
Update to version 2.2.1
davbfr/cf (PHP):
Affected version(s) >=2.0 <2.5
Fix Suggestion:
Update to version 2.5
pi/pi (PHP):
Affected version(s) >=dev-laminas <2.5.0
Fix Suggestion:
Update to version 2.5.0
innova/angularjs (PHP):
Affected version(s) =dev-master <1.0
Fix Suggestion:
Update to version 1.0
matomo/matomo (PHP):
Affected version(s) =14267.x-dev <dev-fix14370
Fix Suggestion:
Update to version dev-fix14370
icap/portfolio-bundle (PHP):
Affected version(s) >=v1.0.0 <4.0.0
Fix Suggestion:
Update to version 4.0.0
newscoop/scoopwriter (PHP):
Affected version(s) =dev-master <1.0.0-alpha1
Fix Suggestion:
Update to version 1.0.0-alpha1
victoire/victoire (PHP):
Affected version(s) =dev-fix/translation <dev-master
Fix Suggestion:
Update to version dev-master
boson/portal-bundle (PHP):
Affected version(s) =dev-b2.7
Fix Suggestion:
Update to version no_fix
i9code/laravelmetronic (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
newscoop/article-edit-screen (PHP):
Affected version(s) =1.1.0 <v1.1
Fix Suggestion:
Update to version v1.1
betteryourweb/laravel-custom (PHP):
Affected version(s) =dev-dev-master <dev-develop
Fix Suggestion:
Update to version dev-develop
betteryourweb/laravel-custom (PHP):
Affected version(s) =dev-master <v3.0.0-beta-2
Fix Suggestion:
Update to version v3.0.0-beta-2
wpcloud/wp-stateless (PHP):
Affected version(s) =2.3.0 <dev-dependabot/composer/composer/installers-2.3.0
Fix Suggestion:
Update to version dev-dependabot/composer/composer/installers-2.3.0
happycoding/civicrm-library-for-drupal (PHP):
Affected version(s) >=dev-dev <=5.14.1-RC1
Fix Suggestion:
Update to version no_fix
newscoop/scoopwriter (PHP):
Affected version(s) =1.2.0 <v1.2.0
Fix Suggestion:
Update to version v1.2.0
salimkamboh/yii2-angularjs (PHP):
Affected version(s) >=dev-main <=1.0
Fix Suggestion:
Update to version no_fix
aryaduta/metronic-bundle (PHP):
Affected version(s) =1.2.2
Fix Suggestion:
Update to version no_fix
prestiggio/medias (PHP):
Affected version(s) =dev-prefixed
Fix Suggestion:
Update to version no_fix
matomo/matomo (PHP):
Affected version(s) =dev-slowtests <dev-smsdoubleformat
Fix Suggestion:
Update to version dev-smsdoubleformat
Related Resources (1)
https://github.com/angular/angular.js/commit/b9ef6585e10477fbbf912a971fe0b390bca692a6
Do you need more information?
Contact Us
CVSS v4
Base Score:
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Attack Requirements
NONE
Privileges Required
NONE
User Interaction
PASSIVE
Vulnerable System Confidentiality
LOW
Vulnerable System Integrity
LOW
Vulnerable System Availability
NONE
Subsequent System Confidentiality
LOW
Subsequent System Integrity
LOW
Subsequent System Availability
NONE
CVSS v3
Base Score:
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality
LOW
Integrity
LOW
Availability
NONE