Angular 18.0.0 for Node.js
Approved changes feed: RSS · Atom
cpe:2.3:a:angular:angular:18.0.0:-:*:*:*:node.js:*:*
part: a version: 18.0.0 update: -
| Vendor | Angular (d8cfb05c-218e-5baa-85be-4cd660bbc13e) |
|---|---|
| Product | Angular (d068de12-94a0-5da4-bec6-9080c1fc1776) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | node.js |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/angular/angular |
purl2cpe | 2026-06-01 10:15:50.711369 |
pkg:googlesource/angular |
purl2cpe | 2026-06-01 10:15:50.711370 |
pkg:maven/org.webjars.npm/angular__core |
purl2cpe | 2026-06-01 10:15:50.711372 |
pkg:npm/%40angular/core |
purl2cpe | 2026-06-01 10:15:50.711374 |
pkg:sourceforge/angular.mirror |
purl2cpe | 2026-06-01 10:15:50.711376 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-61261 |
vulnerable | 2026-06-08 07:37:27.526585 |
Details available
A reflected cross-site scripting (XSS) vulnerability in CKeditor v46.1.0 & Angular v18.0.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload.
Published: 2025-11-07T00:00:00.000Z
Updated: 2025-11-07T19:28:12.951Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.