Name of the Vulnerable Software and Affected Versions AngularJS versions prior to 1.8.0

Description A potential issue may be triggered in AngularJS applications that sanitize user-controlled HTML snippets before passing them to JQLite methods. The jqLiteBuildFragment function in JQLite manipulates input HTML before inserting it into the DOM, which can modify some forms of sanitized payload into a payload containing JavaScript and trigger an XSS when the payload is inserted into the DOM. This issue is similar to a bug in jQuery's htmlPrefilter function.

Recommendations For AngularJS versions prior to 1.8.0, upgrade to AngularJS 1.8.0 to resolve the issue. If using JQuery, upgrade JQuery to 3.5.0, as a similar vulnerability affects jQuery versions prior to 3.5.0. As a temporary workaround, consider changing the sanitizer configuration to not allow certain tag grouping or inline style elements, but note that this may not cover all possible exploitation vectors.