CVE-2025-62427 | angular-cli up to 19.2.17/20.3.5/21.0.0-next.7 createRequestUrl server-side request forgery (GHSA-q63q-pgmf-mxhr)

A vulnerability, which was classified as critical, has been found in angular-cli up to 19.2.17/20.3.5/21.0.0-next.7. This affects the function createRequestUrl. Performing manipulation results in server-side request forgery.

This vulnerability is known as CVE-2025-62427. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More