Search for packages
| purl | pkg:npm/angular-base64-upload@0.1.21 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-sh4h-xwpc-rqbz | angular-base64-upload prior to v0.1.21 is vulnerable to unauthenticated remote code execution via demo/server.php. Exploiting this vulnerability allows an attacker to upload arbitrary content to the server, which can subsequently be accessed through demo/uploads. This leads to the execution of previously uploaded content and enables the attacker to achieve code execution on the server. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. |
CVE-2024-42640
GHSA-vgxq-6rcf-qwrw |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-12T19:43:29.988372+00:00 | GitLab Importer | Fixing | VCID-sh4h-xwpc-rqbz | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/angular-base64-upload/CVE-2024-42640.yml | 38.6.0 |
| 2026-06-12T07:39:54.785253+00:00 | GithubOSV Importer | Fixing | VCID-sh4h-xwpc-rqbz | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/10/GHSA-vgxq-6rcf-qwrw/GHSA-vgxq-6rcf-qwrw.json | 38.6.0 |
| 2026-06-11T20:36:16.358660+00:00 | GHSA Importer | Fixing | VCID-sh4h-xwpc-rqbz | https://github.com/advisories/GHSA-vgxq-6rcf-qwrw | 38.6.0 |