WS-2019-0367 (Medium) detected in angular-1.2.28.js #257

mend-for-github-com · 2020-06-29T14:06:36Z

WS-2019-0367 - Medium Severity Vulnerability

Vulnerable Library - angular-1.2.28.js

AngularJS is an MVC framework for building web applications. The core features include HTML enhanced with custom component and data-binding capabilities, dependency injection and strong focus on simplicity, testability, maintainability and boiler-plate reduction.

Library home page: https://cdnjs.cloudflare.com/ajax/libs/angular.js/1.2.28/angular.js

Path to dependency file: /tmp/ws-scm/angular-recaptcha/demo/usage.html

Path to vulnerable library: /angular-recaptcha/demo/usage.html

Dependency Hierarchy:

❌ angular-1.2.28.js (Vulnerable Library)

Found in HEAD commit: d0c7317c1908251604c4e710c797fdf348d2bc46

Vulnerability Details

Prototype Pollution vulnerability found in Angular before 1.7.8.

Publish Date: 2019-11-07

URL: WS-2019-0367

CVSS 2 Score Details (5.0)

Base Score Metrics not available

Suggested Fix

Type: Upgrade version

Origin: angular/angular.js@726f49d

Release Date: 2019-11-07

Fix Resolution: angularjs - 1.7.8,1.7.8.1

The text was updated successfully, but these errors were encountered:

mend-for-github-com bot added the security vulnerability Security vulnerability detected by WhiteSource label Jun 29, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

WS-2019-0367 (Medium) detected in angular-1.2.28.js #257

WS-2019-0367 (Medium) detected in angular-1.2.28.js #257

mend-for-github-com bot commented Jun 29, 2020

WS-2019-0367 (Medium) detected in angular-1.2.28.js #257

WS-2019-0367 (Medium) detected in angular-1.2.28.js #257

Comments

mend-for-github-com bot commented Jun 29, 2020

WS-2019-0367 - Medium Severity Vulnerability