@angular/ssr

5 known vulnerabilities · 0 critical · 0 high

Protocol-Relative URL Injection via Single Backslash Bypass in Angular SSR

Published Mar 19, 2026

Angular SSR is vulnerable to SSRF and Header Injection via request handling pipeline

Published Feb 25, 2026

Angular SSR: Global Platform Injector Race Condition Leads to Cross-Request Data Leakage

Published Sep 10, 2025

Angular SSR has an Open Redirect via X-Forwarded-Prefix

Published Feb 25, 2026

GHSA-69xr-m8h6-h664

Angular SSR has Open Redirect and Request Steering via Encoded X-Forwarded-Prefix

Published May 6, 2026

Check your entire dependency tree at onceRun dependency scan →