Exploiting Node.js Deserialization Bug for Remote Code Execution

tl;dr Untrusted data passed into unserialize() function in node-serialize module can be exploited to achieve arbitrary code execution by passing a serialized JavaScript Object with an Immediately invoked function expression (IIFE). The Bug During a Node. Read more

Read full article

Similar

Smart rule-based bot. For Browser and Node

yve-bot - Smart rule-based bot. For Browser & Node. (more…)

Node v8.5.0

Windows 32-bit Installer: https://nodejs.org/dist/v8.5.0/node-v8.5.0-x86.msi Windows 64-bit Installer: https://nodejs.org/dist/v8.5.0/node-v8.5.0-x64.msi Windows 32-bit Binary: https://nodejs.org/dist/v8.5.0/win-x86/node.exe Windows 64-bit Binary: https:/... (more…)

How Raygun increased throughput by 2,000% with .NET Core (over Node.js)

Raygun increased throughput by 2000% after moving form Node.js to .NET Core. This article goes into details about memory and EC2 usage. (more…)

Why Scala is better than Node.js

Pardon the inconvenience, but our servers have detected a high number of errors from your connection. To continue, please verify that you are a human: (more…)

Node.js Weekly Update – 17 November, 2017 – RisingStack

The hottest Node.js news of the week: Node v9.2.0 released, tutorials on solving memory leaks & OpenID Connect, & our survey about learning Node.js in 2018! (more…)

Latest News

Health Care Is Hemorrhaging Data. AI Is Here to Help

Introducing bitlib-rs for Rust and Cairo

HUI.js – JavaScript Front End UI Library in 657 Bytes