Exploiting Node.js Deserialization Bug for Remote Code Execution

tl;dr Untrusted data passed into unserialize() function in node-serialize module can be exploited to achieve arbitrary code execution by passing a serialized JavaScript Object with an Immediately invoked function expression (IIFE). The Bug During a Node. Read more

Read full article

Similar

Secure Random Values (In Node.js)

Secure random values (in Node.js). GitHub Gist: instantly share code, notes, and snippets. (more…)

Running a Dogecoin Full Node

Support the Dogecoin network by running your own full node. (more…)

Node.Js 9 Came Up with New Interesting Features

The smart trucking startup CargoX recently announced that it has raised $20 million in Series C funding led by Goldman Sachs. (more…)

From Node to Go: A High-Level Comparison

At XO Group, we primarily work with Node and Ruby to build out our system of interconnected services. We get the implicit performance… (more…)

The Simplest Way to Deploy Node.js with PostgreSQL on AWS

Qovery improves the Developer Experience to deploy staging and production NodeJS application with PostgreSQL database on AWS. (more…)

Latest News

Codeacademy Teaches Rust

Practical Python Programming Course

I automatically, generate a AI image for every big news article