CVE-2026-54267 | Angular up to 19.2.25 provideClientHydration cross site scripting

Inserito da Angelo Barbosa | Giu 22, 2026 | CVE

A vulnerability described as problematic has been identified in Angular up to 19.2.25. Affected is the function provideClientHydration. Such manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2026-54267. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-54267 | Angular up to 19.2.25 provideClientHydration cross site scripting

Post correlati

CVE-2024-1708 | ConnectWise ScreenConnect up to 23.9.7 path traversal

CVE-2024-28848 | open-metadata OpenMetadata up to 1.2.3 validateExpression code injection

CVE-2024-39713 | Rocket.Chat up to 6.10.0 Twilio Webhook Endpoint server-side request forgery

CVE-2024-29877 | Sentrifugo 3.2 edit expense_category_name cross site scripting