vulnerability
Ubuntu: USN-7502-1 (CVE-2020-13756): Horde Css Parser vulnerability
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
8 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | Jun 3, 2020 | May 8, 2025 | May 8, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Jun 3, 2020
Added
May 8, 2025
Modified
May 8, 2025
Description
Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors() or getSelectorsBySpecificity() is called with input from an attacker.
Solution
ubuntu-pro-upgrade-php-horde-css-parser

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.