Client-side template injection (CSTI) affects frameworks like AngularJS and Vue.js. When user input is rendered within template-evaluated contexts, attackers can execute arbitrary JavaScript.
AngularJS sandbox escapes have been a rich area of security research.
Comments (1)
angular_fan
2026-02-24 17:36
Leave a comment