Description
All versions of package angular are vulnerable to Cross-site Scripting (XSS) due to insecure page caching in the Internet Explorer browser, which allows interpolation of <textarea> elements.
Remediation
References
Related Vulnerabilities
Python Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2019-9740)
YOURLS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3824)
WordPress Plugin Smash Balloon Social Post Feed Cross-Site Scripting (4.1)
WordPress Plugin Quotes Collection Cross-Site Request Forgery (1.5.5.1)