2 matches found
CVE-2025-53104 gluestack-ui Command Injection Vulnerability via discussion-to-slack GitHub Action Workflow
gluestack-ui is a library of copy-pasteable components & patterns crafted with Tailwind CSS NativeWind. Prior to commit e6b4271, a command injection vulnerability was discovered in the discussion-to-slack.yml GitHub Actions workflow. Untrusted discussion fields title, body, etc. were directly...
gluestack-ui 命令注入漏洞
gluestack-ui is a gluestack open source. A command injection vulnerability exists in versions prior to gluestack-ui e6b4271, which stems from a command injection in the discussion-to-slack.yml workflow...