CVE-2026-53727 | css_parser 1.22.0/2.0/2.1.0 on Ruby Parser#read_remote_file server-side request forgery
A vulnerability described as critical has been identified in css_parser 1.22.0/2.0/2.1.0 on Ruby. The affected element is the function CssParser::Parser#read_remote_file. Such manipulation leads to server-side request forgery.
This vulnerability is listed as CVE-2026-53727. The attack may be performed from remote. There is no available exploit.
Upgrading the affected component is recommended.