Lucene search
PRIOn knowledge basePRION:CVE-2023-44270HistorySep 29, 2023 - 10:15 p.m.
Code injection
2023-09-2922:15:00
PRIOn knowledge base
www.prio-n.com
7
postcss
code injection
vulnerability
linters
css nodes
An issue was discovered in PostCSS before 8.4.31. The vulnerability affects linters using PostCSS to parse external untrusted CSS. An attacker can prepare CSS in such a way that it will contains parts parsed by PostCSS as a CSS comment. After processing by PostCSS, it will be included in the PostCSS output in CSS nodes (rules, properties) despite being included in a comment.
Related
debiancve
debiancve
CVE-2023-44270
2023-09-29 22:15:11
osv
osv
PostCSS line return parsing error
2023-09-30 00:31:10
CVE-2023-44270
2023-09-29 22:15:11
cvelist
cvelist
CVE-2023-44270
2023-09-29 00:00:00
nvd
nvd
CVE-2023-44270
2023-09-29 22:15:11
ibm
ibm
veracode
veracode
Improper Input Validation
2023-10-10 05:41:05
ubuntucve
ubuntucve
CVE-2023-44270
2023-09-29 00:00:00
cve
cve
CVE-2023-44270
2023-09-29 22:15:11
github
github
PostCSS line return parsing error
2023-09-30 00:31:10