Critical JavaScript Library Flaw Exposes Apps to Remote Code Execution
A critical security vulnerability has been discovered in the widely used FormData npm package, affecting millions of Node.js applications worldwide.
The vulnerability, designated as...
Exploiting SVG Files: Threat Actors Embedding Malicious JavaScript
Cybersecurity researchers are observing a surge in the abuse of Scalable Vector Graphics (SVG) files as an evasive delivery vector for JavaScript-driven redirects, marking...
Critical Weakness In OpenPGP.js Enables Forged Signature Authentication
A critical security vulnerability has been found in OpenPGP.js, a widely used JavaScript cryptography library that enables secure encrypted communications and digital signature verification...
Obfuscated JavaScript in Malicious NPM Packages Targets Ethereum Wallets
A recent surge in supply chain attacks has highlighted malicious activity within the npm ecosystem, where attackers are leveraging heavily obfuscated JavaScript code embedded...
New Safari XSS Vulnerability Exploits JavaScript Error Handling to Run Arbitrary Code
A critical vulnerability in Apple's Safari browser has been discovered that allows attackers to execute arbitrary JavaScript code by exploiting how the browser handles...
