A high vulnerability in Angular’s server-side rendering (SSR) feature can lead to sensitive data exposure when multiple requests are handled at the same time.
This flaw, tracked as CVE-2025-59052, stems from a global race condition in the platform injector that may cause cross-request data leakage.
Organizations using vulnerable Angular versions should update immediately or implement recommended workarounds to avoid potential data breaches.
https://gbhackers.com/angular-ssr-vulnerability/