CVE-2026-41305 | postcss up to 8.5.9 CSS File cross site scripting (GHSA-qx2v-qp2m-jg93)

A vulnerability, which was classified as problematic, has been found in postcss up to 8.5.9. The affected element is an unknown function of the component CSS File Handler. The manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2026-41305. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More