CVE-2026-44643
Angular Expressions - Remote Code Execution using filters
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Angular Expressions provides expressions for the Angular.JS web framework as a standalone module. Prior to 1.5.2, an attacker can write a malicious expression using filters that escapes the sandbox to execute arbitrary code on the system. This vulnerability is fixed in 1.5.2.
| CWE | CWE-95 |
| Vendor | peerigon |
| Product | angular-expressions |
| Published | May 11, 2026 |
| Last Updated | May 11, 2026 |
Stay Ahead of the Next One
Get instant alerts for peerigon angular-expressions
Be the first to know when new unknown vulnerabilities affecting peerigon angular-expressions are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
peerigon / angular-expressions
< 1.5.2