Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

@angular/platform-server

Ecosystem:
npm
Package URL:
pkg:npm/@angular/platform-server
Total PRs:
923 Dependabot PRs
Latest PR:
2 days ago
Unique Repositories:
417 repositories
Unique Repos (30 days):
24 repositories
Security Advisories
Angular: SSRF via protocol-relative and backslash URLs in Angular Platform-Server
GHSA-45q2-gjvg-7973 CVE-2026-41423 HIGH published 2 months ago • updated 8 days ago
### Impact A [Server-Side Request Forgery (SSRF)](https://developer.mozilla.org/en-US/docs/Web/Security/Attacks/SSRF) vulnerability exists in `@an...
@angular/platform-server: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
GHSA-hqr9-c56f-3x7f CVE-2026-50555 HIGH published 2 days ago • updated about 11 hours ago
A Cross-Site Scripting (XSS) vulnerability exists in `@angular/platform-server`'s DOM emulation dependency (`domino`) when serializing the content ...
@angular/platform-server: Missing `<noscript>` Raw-Text Serialization Escaping leads to Cross-Site Scripting (XSS) in Angular SSR
GHSA-gxx4-3xcv-f8qx CVE-2026-50556 HIGH published 2 days ago • updated 1 day ago
A Cross-Site Scripting (XSS) vulnerability exists in `@angular/platform-server`'s DOM emulation dependency (`domino`) when serializing the content ...
@angular/platform-server: URL Parser Differential leading to SSRF Allowlist Bypass
GHSA-xrxm-cp7j-8xf6 CVE-2026-50168 HIGH published 3 days ago • updated 1 day ago
An issue in the `@angular/platform-server` package allows remote attackers to bypass host allowlist constraints and direct server-side outgoing req...
@angular/platform-server: SSRF via Hostname Hijacking
GHSA-rfh7-fxqc-q52v CVE-2026-46417 HIGH published 29 days ago • updated about 5 hours ago
### Impact A Server-Side Request Forgery (SSRF) vulnerability exists in `@angular/platform-server`. The issue stems from how the server-side rende...
View all 6 advisories
Recent PRs (filtered by: Patch PRs )
RSS Feed Clear filter
⬆️ Bump @angular/platform-server from 19.2.6 to 19.2.7 in /geo-search

oc-2/website-breaker2 #241

19.2.6 → 19.2.7 Patch PR
Closed about 1 year ago 1 comment
oc-2
chore(deps): bump the dev-dependencies group across 1 directory with 77 updates

koobiq/angular-components #366

18.2.6 → 18.2.8 Patch PR
Closed over 1 year ago 1 comment
koobiq
Package Details
Name: @angular/platform-server
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/@angular/platform-server
JSON API: View JSON
Security Advisories

6

Active advisories
HIGH 6
View All npm Advisories
Package Information
Description:

Angular - library for using Angular in Node.js

Repository: https://github.com/angular/angular
Homepage: https://github.com/angular/angular#readme
Latest Release: 20.0.1
about 1 year ago
Dependent Repos: 32,535
Dependent Packages: 3,488
Downloads: 2,005,491
Ranking: Top 0.1716% by dependent repos Top 0.2345% by downloads Top 0.0244% by dependent pkgs
PR Status
Open 478 (51.8%)
Merged 87 (9.4%)
Closed 306 (33.2%)
PR Types
Major 184 (19.9%)
Minor 334 (36.2%)
Patch 352 (38.1%)
Removal 1 (0.1%)