Package impact
npm / @angular/core
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-32635 | critical | 9.0 | 9.0 | 3mo ago | Angular vulnerable to XSS in i18n attribute bindings | |||
| CVE-2026-22610 | medium | 6.1 | 6.1 | 5mo ago | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.18, 20.3.16, 21.0.7, and 21.1.0-rc.0, a cros… | |||
| CVE-2026-27970 | unknown | — | — | 3mo ago | Angular i18n vulnerable to Cross-Site Scripting | |||
| CVE-2021-4231 | unknown | — | — | 4y ago | Angular vulnerable to Cross-site Scripting |