CVE-2020-7676

angular.js prior to 1.8.0 allows cross site scripting. The regex-based input HTML replacement may turn sanitized code into unsanitized one. Wrapping "" elements in "" ones changes parsing behavior, leading to possibly unsanitizing code.
Configurations

Configuration 1

cpe:2.3:a:angularjs:angular.js:*:*:*:*:*:*:*:*

Information

Published : 2020-06-08 02:15

Updated : 2020-10-09 04:15


NVD link : CVE-2020-7676

Mitre link : CVE-2020-7676

Products Affected
No products.
CWE