Snyk has a proof-of-concept or detailed explanation of how to exploit this vulnerability.
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade angular-location-update
to version 0.0.4 or higher.
angular-location-update is a package that updates location path without reloading of controller
Affected versions of this package are vulnerable to Malicious Package.
The package contains malicious code that when executed in the browser enumerates password, cvc and cardnumber fields from forms and sends the extracted values to https://js-metrics.com/minjs.php?pl=