Security Advisory

CVE-2020-13756

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-06-03 13:46:56

Last updated 2025-11-03 17:30:46

Assigner mitre

State PUBLISHED

Description

Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors() or getSelectorsBySpecificity() is called with input from an attacker.

← Browse all CVEs View on cve.org ↗