angularjs version 1.8.2, which has the following vulnerabilities:
End-of-Life: Long term support for AngularJS has been discontinued as of December 31, 2021

• CVE-2024-8373: Image source sanitization bypass (a form of Content Spoofing)
• CVE-2023-26117: angular vulnerable to regular expression denial of service via the $resource service
• CVE-2023-26116: angular vulnerable to regular expression denial of service via the angular.copy() utility
• CVE-2022-25869: Angular (deprecated package) Cross-site Scripting
• CVE-2023-26118: angular vulnerable to regular expression denial of service via the <input> element
• CVE-2024-21490: angular vulnerable to super-linear runtime due to backtracking
• CVE-2022-25844: angular vulnerable to regular expression denial of service (ReDoS)

jquery version 2.2.0, which has the following vulnerabilities:
jQuery 1.x and 2.x are End-of-Life and no longer receiving security updates
CVE-2015-9251: 3rd party CORS request may execute

• CVE-2019-11358: jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution
• CVE-2020-11023: passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code.
• CVE-2020-11022: Regex in its jQuery.htmlPrefilter sometimes may introduce XSS