Sabberworm PHP CSS Parser prior to 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors() or getSelectorsBySpecificity() is called with input from an attacker.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sabberworm php css parser |