Known Vulnerabilities for Postcss by Postcss
Listed below are 3 of the newest known vulnerabilities associated with "Postcss" by "Postcss".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44301 json | Hugo is a static site generator. From 0.43 to before 0.161.0, when building a Hugo site that uses Node-based asset pipelines ... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-41305 json | PostCSS takes a CSS file and provides an API to analyze and modify its rules by transforming the rules into an Abstract Synta... | Not Provided | 2026-04-24 | 2026-04-24 |
| CVE-2023-44270 json | An issue was discovered in PostCSS before 8.4.31. The vulnerability affects linters using PostCSS to parse external untrusted... | 5.3 - MEDIUM | 2023-09-29 | 2023-10-10 |
| CVE-2021-23382 json | The package postcss before 8.2.13 are vulnerable to Regular Expression Denial of Service (ReDoS) via getAnnotationURL() and l... | 7.5 - HIGH | 2021-04-26 | 2023-08-08 |
| CVE-2021-23368 json | The package postcss from 7.0.0 and before 8.2.10 are vulnerable to Regular Expression Denial of Service (ReDoS) during source... | 5.3 - MEDIUM | 2021-04-12 | 2023-11-07 |