Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-33665

Published: 26/04/2024 Updated: 26/04/2024

Vulnerability Summary

angular-translate up to and including 2.19.1 allows XSS via a crafted key that is used by the translate directive. NOTE: the vendor indicates that there is no documentation indicating that a key is supposed to be safe against XSS attacks.

Vulnerability Trend

References

https://github.com/angular-translate/angular-translate/issues/1418https://stackblitz.com/github/neverendingsupport/angular-translate-xss-2024?file=public%2Findex.htmlhttp://docs.herodevs.com/docs/2024-Angular-Translate-XSShttps://github.com/angular-translate/angular-translate/issues/1418#issuecomment-252498855https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2024-34490SQL injectionCVE-2024-34488CVE-2024-4507CVE-2023-7028CVE-2024-23187TCPCVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook