Malicious code in commitlint-sedimentology-got-css-loader (npm)

The package commitlint-sedimentology-got-css-loader was found to contain malicious code...

Malicious code in yaml-rate-limiter-epimetheus-optimize-css-assets-webpack-plugin (npm)

The package yaml-rate-limiter-epimetheus-optimize-css-assets-webpack-plugin was found to contain malicious code...

Malicious code in gravity-optimize-css-assets-webpack-plugin-selenium-rollup-plugin (npm)

The package gravity-optimize-css-assets-webpack-plugin-selenium-rollup-plugin was found to contain malicious code...

Malicious code in nestjs-uranology-weywot-css-loader (npm)

The package nestjs-uranology-weywot-css-loader was found to contain malicious code...

MAL-2025-45170 Malicious code in membrane-optimize-css-assets-webpack-plugin-plutology-gatsby (npm)

The package membrane-optimize-css-assets-webpack-plugin-plutology-gatsby was found to contain malicious code...

MAL-2025-45820 Malicious code in rest-changelog-mini-css-extract-plugin-eslint-plugin (npm)

The package rest-changelog-mini-css-extract-plugin-eslint-plugin was found to contain malicious code...

Malicious code in chromedriver-css-minimizer-webpack-plugin-petrology-on (npm)

The package chromedriver-css-minimizer-webpack-plugin-petrology-on was found to contain malicious code...

MAL-2025-45201 Malicious code in miranda-css-minimizer-webpack-plugin-ursa-request (npm)

The package miranda-css-minimizer-webpack-plugin-ursa-request was found to contain malicious code...

MAL-2025-44168 Malicious code in eslint-css-minimizer-webpack-plugin-metabolomics-centaurus (npm)

The package eslint-css-minimizer-webpack-plugin-metabolomics-centaurus was found to contain malicious code...

Improper sanitization of CSS values in html/template

...

Linux Distros Unpatched Vulnerability : CVE-2021-30884

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The issue was resolved with additional restrictions on CSS compositing. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Visiting a maliciously...

Linux Distros Unpatched Vulnerability : CVE-2020-13756

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors or...

Linux Distros Unpatched Vulnerability : CVE-2018-6164

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient origin checks for CSS content in Blink in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to leak cross-origin data via a crafted HTM...

Linux Distros Unpatched Vulnerability : CVE-2022-21222

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The package css-what before 2.1.3 are vulnerable to Regular Expression Denial of Service ReDoS due to the usage of insecure regular expression in the reattr...

Linux Distros Unpatched Vulnerability : CVE-2018-6137

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CSS Paint API in Blink in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to leak cross- origin data via a crafted HTML page. CVE-2018-6137 Note...

Malicious code in koa-uglify-js-css-minimizer-webpack-plugin-tectonophysics (npm)

The package koa-uglify-js-css-minimizer-webpack-plugin-tectonophysics was found to contain malicious code...

Malicious code in mini-css-extract-plugin-jabbah-dotenv-safe-asthenosphere (npm)

The package mini-css-extract-plugin-jabbah-dotenv-safe-asthenosphere was found to contain malicious code...

Malicious code in nanotechnology-mini-css-extract-plugin-sociobiology-superagent (npm)

The package nanotechnology-mini-css-extract-plugin-sociobiology-superagent was found to contain malicious code...

Malicious code in yakutsk-xanthus-robotics-css-loader (npm)

The package yakutsk-xanthus-robotics-css-loader was found to contain malicious code...

Malicious code in steganography-dactyl-css-loader-radiometric (npm)

The package steganography-dactyl-css-loader-radiometric was found to contain malicious code...