CVE ID :CVE-2026-50168 Published : June 22, 2026, 3:39 p.m. | 7 hours, 30 minutes ago Description :Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 21.2.15, 20.3.22, and 19.2.23, an issue...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-50168 - Angular: URL Parser Differential in @angular/platform-server leading to SSRF Allowlist Bypass

VERWANDTEARTIKEL

CVE-2026-48109 - MessagePack-CSharp: LZ4 decompression may fail with AccessViolationException after dereferencing memory from bad input

CVE-2026-56348 - n8n - Credential Exfiltration via Allowed HTTP Request Domains Bypass in Dynamic Node Parameters Endpoint

CVE-2026-56324 - Capgo - Rate Limit Bypass via User-Controlled device_id Parameter

CVE-2026-56323 - Capgo - Unauthenticated Channel Enumeration and App Oracle via GET /channel_self

CVE-2026-56266 - Crawl4AI - Server-Side Request Forgery via Direct Crawl Endpoints

CVE-2025-71358 - picklescan - Remote Code Execution via idlelib.autocomplete.AutoComplete.get_entity