[Git][security-tracker-team/security-tracker][master] CVE-2025-0716/angular.js
Bastien Roucariès (@rouca)
rouca at debian.org
Sat Jun 7 20:57:55 BST 2025
Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker
Commits:
69e37f6b by Bastien Roucariès at 2025-06-07T21:57:26+02:00
CVE-2025-0716/angular.js
Add more information
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12481,6 +12481,8 @@ CVE-2025-1194 (A Regular Expression Denial of Service (ReDoS) vulnerability was
NOT-FOR-US: huggingface/transformers
CVE-2025-0716 (Improper sanitization of the value of the 'href' and 'xlink:href' attr ...)
- angular.js <unfixed> (bug #1104485)
+ NOTE: https://www.herodevs.com/vulnerability-directory/cve-2025-0716
+ NOTE: PoC: https://codepen.io/herodevs/pen/qEWQmpd/a86a0d29310e12c7a3756768e6c7b915
CVE-2025-0520 (An unrestricted file upload vulnerability in ShowDoc caused by imprope ...)
NOT-FOR-US: ShowDoc
CVE-2024-57698 (An issue in modernwms v.1.0 allows an attacker view the MD5 hash of th ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/69e37f6ba2d756527aaecd411510e41065b0f1fb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/69e37f6ba2d756527aaecd411510e41065b0f1fb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250607/a946233e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list