Description
Versions of the package angular from 1.0.0 are vulnerable to Regular Expression Denial of Service (ReDoS) via the $resource service due to the usage of an insecure regular expression. Exploiting this vulnerability is possible by a large carefully-crafted input, which can result in catastrophic backtracking.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Socializer-Simple & Easy Social Media Share Icons Cross-Site Scripting (7.2)
WordPress Plugin EventCommerce WP Event Calendar Cross-Site Scripting (1.0)
OpenSSL Cryptographic Issues Vulnerability (CVE-2014-3470)
Django Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-4140)