|
761
|
6.1 |
MEDIUM
Network
|
angularjs
|
angularjs
|
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 21.2.16, 20.3.24, and 19.2.25, a Cross-Site S…
|
CWE-79
Cross-site Scripting
|
CVE-2026-50555
|
2026-06-27 04:39 |
2026-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
762
|
6.1 |
MEDIUM
Network
|
angularjs
|
angularjs
|
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 21.2.15, 20.3.22 and 19.2.22, an issue in the…
|
CWE-79
Cross-site Scripting
|
CVE-2026-50557
|
2026-06-27 04:39 |
2026-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
763
|
7.5 |
HIGH
Network
|
aiohttp
|
aiohttp
|
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, no limit was present on the number of pipelined requests that could be queued. An attacker may be able…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-54273
|
2026-06-27 04:37 |
2026-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
764
|
6.1 |
MEDIUM
Network
|
angularjs
|
angularjs
|
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.17, and 20.3.25, Angular's HttpTransferCache …
|
CWE-328
CWE-345
Use of Weak Hash
Insufficient Verification of Data Authenticity
|
CVE-2026-54266
|
2026-06-27 04:37 |
2026-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
765
|
7.5 |
HIGH
Network
|
aiohttp
|
aiohttp
|
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, if an attacker sends large incomplete websocket frame payloads, it may be possible to bypass the usual…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-54274
|
2026-06-27 04:37 |
2026-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
766
|
7.5 |
HIGH
Network
|
aiohttp
|
aiohttp
|
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, the server_hostname TLS SNI check can be bypassed when an existing connection is reused. If an applica…
|
CWE-297
Improper Validation of Certificate with Host Mismatch
|
CVE-2026-54275
|
2026-06-27 04:36 |
2026-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
767
|
7.5 |
HIGH
Network
|
aiohttp
|
aiohttp
|
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, host-only cookies that are saved with CookieJar.save() and then restored later with CookieJar.load() l…
|
CWE-665
Improper Initialization
|
CVE-2026-54279
|
2026-06-27 04:36 |
2026-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
768
|
7.5 |
HIGH
Network
|
aiohttp
|
aiohttp
|
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, payload resources are not closed correctly when a client disconnects in the middle of a write. If a pa…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-54280
|
2026-06-27 04:35 |
2026-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
769
|
6.1 |
MEDIUM
Network
|
angularjs
|
angularjs
|
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.17, and 20.3.25, to optimize client-side boot…
|
CWE-79
CWE-471
Cross-site Scripting
Modification of Assumed-Immutable Data (MAID)
|
CVE-2026-54267
|
2026-06-27 04:35 |
2026-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
770
|
6.1 |
MEDIUM
Network
|
angularjs
|
angularjs
|
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.17, and 20.3.25, an issue in the @angular/com…
|
CWE-79
Cross-site Scripting
|
CVE-2026-54265
|
2026-06-27 04:35 |
2026-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
