Versions of the package angular from 1.0.0 are vulnerable to Regular Expression Denial of Service (ReDoS) via the $resource service due to the usage of an insecure regular expression. Exploiting this vulnerability is possible by a large carefully-crafted input, which can result in catastrophic backtracking.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
angularjs angular |
||
fedoraproject fedora 38 |