An issue was discovered in the better-macro crate through 2021-07-22 for Rust. It intentionally demonstrates that remote attackers can execute arbitrary code via proc-macros, and otherwise has no legitimate purpose.
{ "nvd_published_at": "2021-08-08T06:15:00Z", "github_reviewed_at": "2021-08-18T21:21:03Z", "severity": "HIGH", "github_reviewed": true, "cwe_ids": [ "CWE-78", "CWE-94" ] }