VYPR

npm package

@nguniversal/common

pkg:npm/%40nguniversal/common

Vulnerabilities (2)

  • CVE-2026-27739CriFeb 25, 2026
    affected <= 16.2.0

    The Angular SSR is a server-rise rendering tool for Angular applications. Versions prior to 21.2.0-rc.1, 21.1.5, 20.3.17, and 19.2.21 have a Server-Side Request Forgery (SSRF) vulnerability in the Angular SSR request handling pipeline. The vulnerability exists because Angular’s i

  • CVE-2025-59052HigSep 10, 2025
    affected >= 16.0.0-next.0, <= 16.2.0

    Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Angular uses a DI container (the "platform injector") to hold request-specific state during server-side rendering. For historical reasons, the conta