Vulnerabilities > Postcss > Postcss > 6.0.4

DATE CVE VULNERABILITY TITLE RISK
2023-09-29 CVE-2023-44270 Injection vulnerability in Postcss
An issue was discovered in PostCSS before 8.4.31.
network
low complexity
postcss CWE-74
5.3
5.3
2021-04-26 CVE-2021-23382 Unspecified vulnerability in Postcss
The package postcss before 8.2.13 are vulnerable to Regular Expression Denial of Service (ReDoS) via getAnnotationURL() and loadAnnotation() in lib/previous-map.js.
network
low complexity
postcss
7.5
7.5