all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Node.js prototype pollution is bad for your app environment

Add to bookmarks
July 25, 2022, 9:46 p.m. | Thomas Claburn

The Register - Security www.theregister.com

Boffins find common code constructs that may be exploitable to achieve remote code execution

Back in March, security researchers reported a critical command injection vulnerability in Parse Server, an open-source backend for Node.js environments.…

app bad environment js node node.js

Visit resource

More from www.theregister.com / The Register - Security

Mandiant: Orgs are detecting cybercriminals faster than ever 15 hours ago | www.theregister.com
big cyberattacks cybercriminals detect +8
UnitedHealth admits breach could 'cover substantial proportion of people in America' 16 hours ago | www.theregister.com
america breach change change healthcare +14
Leicester streetlights take ransomware attack personally, shine on 24/7 17 hours ago | www.theregister.com
attack city control council +13
Over a million Neighbourhood Watch members exposed through web app bug 20 hours ago | www.theregister.com
app bug can communications +15
Misconfigured cloud server leaked clues of North Korean animation scam 23 hours ago | www.theregister.com
address amazon animation bbc +19
Old Windows print spooler bug is latest target of Russia's Fancy Bear gang 1 day, 3 hours ago | www.theregister.com
attacks bear bug called +34
FBI and friends get two more years of warrantless FISA Section 702 snooping 1 day, 7 hours ago | www.theregister.com
biden bill can fbi +15
Europol becomes latest law enforcement group to plead with big tech to ditch E2EE 1 day, 12 hours ago | www.theregister.com
big big tech bore can +18
Germany arrests trio accused of trying to smuggle naval military tech to China 1 day, 13 hours ago | www.theregister.com
arrested arrests beijing china +9

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Check Team Members / Cyber Consultants / Pen Testers

@ Resillion | Birmingham, United Kingdom
View on infosec-jobs.com

Security Officer Field Training Officer- Full Time (Harrah's LV)

@ Caesars Entertainment | Las Vegas, NV, United States
View on infosec-jobs.com

Cybersecurity Subject Matter Expert (SME)

@ SMS Data Products Group, Inc. | Fort Belvoir, VA, United States
View on infosec-jobs.com

AWS Security Engineer

@ IntelliPro Group Inc. | Palo Alto, CA
View on infosec-jobs.com

Information Security Analyst

@ Freudenberg Group | Alajuela
View on infosec-jobs.com
View more jobs