Lucene search
PRIOn knowledge basePRION:CVE-2020-13756HistoryJun 03, 2020 - 2:15 p.m.
Remote code execution
2020-06-0314:15:00
PRIOn knowledge base
www.prio-n.com
4
Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors() or getSelectorsBySpecificity() is called with input from an attacker.
| CPE | Name | Operator | Version |
|---|---|---|---|
| php_css_parser | lt | 8.3.1 |
Related
veracode
veracode
Remote Code Execution
2020-06-04 05:19:37
friendsofphp
friendsofphp
Code injection vulnerability in allSelectors()
1970-01-01 00:00:00
Code injection vulnerability in allSelectors()
1970-01-01 00:00:00
cvelist
cvelist
CVE-2020-13756
2020-06-03 13:46:56
cve
cve
CVE-2020-13756
2020-06-03 14:15:12
attackerkb
attackerkb
CVE-2020-13756
2020-06-03 00:00:00
zdt
zdt
Sabberworm PHP CSS Code Injection Vulnerability
2020-06-03 00:00:00
github
github
Sabberworm PHP CSS Parser Code injection vulnerability in allSelectors()
2022-03-26 00:15:22
packetstorm
packetstorm
Sabberworm PHP CSS Code Injection
2020-06-03 00:00:00
threatpost
threatpost
TrickBot Takes Over, After Cops Kneecap Emotet
2021-03-11 21:47:23
osv
osv
Sabberworm PHP CSS Parser Code injection vulnerability in allSelectors()
2022-03-26 00:15:22
CVE-2020-13756
2020-06-03 14:15:12
nvd
nvd
CVE-2020-13756
2020-06-03 14:15:12
checkpoint_advisories
checkpoint_advisories