CVE-2024-21490 - The Angular `ng-srcset` Regular Expression Denial of Service Vulnerability Unpacked
TL;DR
Old versions of Angular (since 1.3.) use an unsafe regular expression in the ng-srcset directive. Attackers can exploit this with specially crafted