Search CVE reports


Toggle filters

1 result


CVE-2020-13756

Medium priority
Fixed

Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors() or getSelectorsBySpecificity() is called with input from an attacker.

1 affected package

php-horde-css-parser

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php-horde-css-parser Not in release Not in release Not in release Fixed
Show less packages