Fluid Attacks Database

Description

Sabberworm PHP CSS Parser Code injection vulnerability in allSelectors() Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors() or getSelectorsBySpecificity() is called with input from an attacker.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
packagist	sabberworm/php-css-parser	>=8.3.0 <8.3.1 \|\| >=8.2.0 <8.2.1 \|\| >=8.1.0 <8.1.1 \|\| >=8.0.0 <8.0.1 \|\| >=7.0.0 <7.0.4 \|\| >=6.0.0 <6.0.2 \|\| >=5.2.0 <5.2.1 \|\| >=5.1.0 <5.1.3 \|\| >=5.0.0 <5.0.9 \|\| >=4.0.0 <4.0.1 \|\| >=3.0.0 <3.0.1 \|\| >=2.0.0 <2.0.1 \|\| >=1.0.0 <1.0.1	8.3.1, 8.2.1, 8.1.1, 8.0.1, 7.0.4, 6.0.2, 5.2.1, 5.1.3, 5.0.9, 4.0.1, 3.0.1, 2.0.1, 1.0.1
debian 11	php-horde-css-parser	=1.0.11-8 \|\| >=0 <1.0.11-8+deb11u1	1.0.11-8+deb11u1
debian 12	php-horde-css-parser	=1.0.11-8 \|\| =1.0.11-8.1	-

Aliases

1. CVE-2020-137562. NVD-2020-137563. OSV-2020-137564. OSV-DEBIAN-2020-137565. GCVE-2020-137566. lists.debian.org7. SECURITY-TRACKER-CVE-2020-13756

References

1. https://github.com/sabberworm/PHP-CSS-Parser/commit/2ebf59e8bfbf6cfc1653a5f0ed743b95062c62a42. https://github.com/FriendsOfPHP/security-advisories/blob/master/sabberworm/php-css-parser/CVE-2020-13756.yaml3. https://github.com/sabberworm/PHP-CSS-Parser/releases/tag/8.3.14. https://packetstormsecurity.com/files/cve/CVE-2020-137565. http://packetstormsecurity.com/files/157923/Sabberworm-PHP-CSS-Code-Injection.html6. http://seclists.org/fulldisclosure/2020/Jun/77. https://vulncheck.com/cve/CVE-2020-137568. https://github.com/KrE80r/CVE-2020-13756-env

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.