MAL-2025-45201 Malicious code in miranda-css-minimizer-webpack-plugin-ursa-request (npm)

The package miranda-css-minimizer-webpack-plugin-ursa-request was found to contain malicious code...

MAL-2025-45501 Malicious code in paleomagnetism-betelgeuse-optimize-css-assets-webpack-plugin-koa (npm)

The package paleomagnetism-betelgeuse-optimize-css-assets-webpack-plugin-koa was found to contain malicious code...

MAL-2025-43543 Malicious code in auth-polaris-rate-limiter-optimize-css-assets-webpack-plugin (npm)

The package auth-polaris-rate-limiter-optimize-css-assets-webpack-plugin was found to contain malicious code...

MAL-2025-45820 Malicious code in rest-changelog-mini-css-extract-plugin-eslint-plugin (npm)

The package rest-changelog-mini-css-extract-plugin-eslint-plugin was found to contain malicious code...

MAL-2025-44586 Malicious code in heliophysics-sedimentology-paleoclimatology-css-minimizer-webpack-plugin (npm)

The package heliophysics-sedimentology-paleoclimatology-css-minimizer-webpack-plugin was found to contain malicious code...

MAL-2025-45812 Malicious code in repository-helios-mini-css-extract-plugin-gemini (npm)

The package repository-helios-mini-css-extract-plugin-gemini was found to contain malicious code...

MAL-2025-45473 Malicious code in optimize-css-assets-webpack-plugin-izar-nuxtjs-toml (npm)

The package optimize-css-assets-webpack-plugin-izar-nuxtjs-toml was found to contain malicious code...

MAL-2025-45472 Malicious code in optimize-css-assets-webpack-plugin-fornax-global-markdownlint (npm)

The package optimize-css-assets-webpack-plugin-fornax-global-markdownlint was found to contain malicious code...

MAL-2025-45561 Malicious code in pino-pretty-carpo-css-minimizer-webpack-plugin-mini-css-extract-plugin (npm)

The package pino-pretty-carpo-css-minimizer-webpack-plugin-mini-css-extract-plugin was found to contain malicious code...

MAL-2025-43876 Malicious code in commitlint-sedimentology-got-css-loader (npm)

The package commitlint-sedimentology-got-css-loader was found to contain malicious code...

MAL-2025-44168 Malicious code in eslint-css-minimizer-webpack-plugin-metabolomics-centaurus (npm)

The package eslint-css-minimizer-webpack-plugin-metabolomics-centaurus was found to contain malicious code...

MAL-2025-43450 Malicious code in antares-interstellarmedium-corvus-css-minimizer-webpack-plugin (npm)

The package antares-interstellarmedium-corvus-css-minimizer-webpack-plugin was found to contain malicious code...

Malicious code in apachecn-html-css-zh-pt2 (npm)

The package apachecn-html-css-zh-pt2 was found to contain malicious code...

Malicious code in apachecn-html-css-zh-pt3 (npm)

The package apachecn-html-css-zh-pt3 was found to contain malicious code...

Improper sanitization of CSS values in html/template

...

Linux Distros Unpatched Vulnerability : CVE-2021-30884

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The issue was resolved with additional restrictions on CSS compositing. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Visiting a maliciously...

Linux Distros Unpatched Vulnerability : CVE-2020-13756

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors or...

Linux Distros Unpatched Vulnerability : CVE-2018-6164

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient origin checks for CSS content in Blink in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to leak cross-origin data via a crafted HTM...

Linux Distros Unpatched Vulnerability : CVE-2022-21222

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The package css-what before 2.1.3 are vulnerable to Regular Expression Denial of Service ReDoS due to the usage of insecure regular expression in the reattr...

Linux Distros Unpatched Vulnerability : CVE-2018-6137

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CSS Paint API in Blink in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to leak cross- origin data via a crafted HTML page. CVE-2018-6137 Note...