All 4 CVE vulnerabilities found in angular-cli, with AI-generated Chinese analysis, references, and POCs.
Vendor: angular
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33397 | Angular SSR Vulnerable to Protocol-Relative URL Injection via Single Backslash Bypass CWE-601 | 6.1 | - | 2026-03-26 |
| CVE-2026-27739 | Angular SSR is vulnerable to SSRF and Header Injection via request handling pipeline CWE-918 | 9.8AI | CriticalAI | 2026-02-25 |
| CVE-2026-27738 | Angular SSR has an Open Redirect via X-Forwarded-Prefix CWE-601 | 6.1AI | MediumAI | 2026-02-25 |
| CVE-2025-62427 | Server-Side Request Forgery (SSRF) in Angular SSR CWE-918 | 9.1AI | CriticalAI | 2025-10-16 |
All 4 known CVE vulnerabilities affecting angular-cli with full Chinese analysis, references, and POCs where available.