CVE-2026-50555 | Angular up to 18.2.14/19.2.24/20.3.23/21.2.15 Unicode Character cross site scripting (GHSA-hqr9-c56f-3x7f)

Inserito da Angelo Barbosa | Giu 22, 2026 | CVE

A vulnerability labeled as problematic has been found in Angular up to 18.2.14/19.2.24/20.3.23/21.2.15. This impacts an unknown function of the component Unicode Character Handler. Such manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2026-50555. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.

CVE-2026-50555 | Angular up to 18.2.14/19.2.24/20.3.23/21.2.15 Unicode Character cross site scripting (GHSA-hqr9-c56f-3x7f)

Post correlati

CVE-2026-23733 | lobehub lobe-chat up to 1.136.2 Mermaid Artifact Renderer cross site scripting (GHSA-4gpc-rhpj-9443)

CVE-2025-54547 | Arista DANZ Monitoring Fabric session expiration

CVE-2025-23991 | theDotstore Product Size Charts Plugin for WooCommerce up to 2.4.5 on WordPress authorization

CVE-2024-11807 | NPS Computy Plugin up to 2.8.0 on WordPress cross site scripting