2 matches found
CVE-2025-67750 Lightning Flow Scanner is Vulnerable to Code Injection via Unsafe Use of new Function() in APIVersion Rule
Lightning Flow Scanner provides a A CLI plugin, VS Code Extension and GitHub Action for analysis and optimization of Salesforce Flows. Versions 6.10.5 and below allow a maliciously crafted flow metadata file to cause arbitrary JavaScript execution during scanning. The APIVersion rule uses new...
PT-2024-40306 · Crates.Io · Xous
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned, so the information cannot be determined. Description: The issue concerns the functions as slice and as slice mut being considered unsound. This is because any pointer, regardless of its bit...