Package impact
NPM / @angular/ssr
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-44437 | medium | 6.1 | 6.1 | 16d ago | The Angular SSR is a server-rise rendering tool for Angular applications. From 19.0.0-next.0 to before 19.2.25, 20.3.25, 21.2.9, and 22.0.0-next.7, a vulnerability exists in the X-Forwarded-Prefix he… | |||
| CVE-2026-33397 | medium | 6.1 | 6.1 | 2mo ago | Protocol-Relative URL Injection via Single Backslash Bypass in Angular SSR |