Logo
Contribute
Go To App

AIKIDO-2025-10730

@angular/ssr is vulnerable to Server-Side Request Forgery (SSRF)

46

Medium

@angular/ssr JS

AIKIDO-2025-10730: @angular/ssr is vulnerable to Server-Side Request Forgery (SSRF) in versions 19.0.0 - 19.2.17 and 20.0.0 - 20.3.5.

Server-Side Request Forgery (SSRF)
Vuln in 19.0.0 - 19.2.17
Fixed in 19.2.18
Vuln in 20.0.0 - 20.3.5
Fixed in 20.3.6
No CVE available
TL;DR

Who does this affect?

How can it be fixed?

Background info

Link to vendor website

Our intel, your security

open-source

Open-source

Aikido Intel is available under AGPL license, developers may freely use, modify, and distribute the vulnerability & malware feed.

share

License the intel database

Want to integrate our threat intelligence into your product? Get access through our commercial API.

Get Access
aikido

Get protected by Aikido- it's free.

Easily secure your software supply chain, and more. Secure your your code, cloud, and runtime with Aikido’s all-in-one security platform.

Get Secure

Secure everything you build, host and run with Aikido

Get Secure
Logo
© 2024 Aikido Security BV | BE0792914919
🇪🇺 Registered address: Coupure Rechts 88, 9000, Ghent, Belgium
🇪🇺 Office address: Gebroeders van Eyckstraat 2, 9000, Ghent, Belgium
🇺🇸 Office address: 95 Third St, 2nd Fl, San Francisco, CA 94103, US
Any use of the intel.aikido.dev website and content is explicitly subject to Aikido Terms of Use.
The Intel vulnerability and malware feed is licensed under a dual license.