Collaborate Disseminate
I recently found a prototype pollution vulnerability in an open-source project.
The code was something like this:
var a = {}
var b = JSON.parse(‘some_user_input_where_payload_can_be_sent’)
// consider b = JSON.parse(‘{"__proto__"… Continue reading Prototype Pollution – Is this effective only for the Global objects?
We discovered a vulnerability with our system. We have a situation a user can log in into multiple devices and trigger a request at once so that checks like this are bypassed.
if(credit > purchase){
// Make api call
If(successful){
// D… Continue reading How to prevent multiple requests from passing database check? [migrated]
Good day, we deployed our app that has payment on it with a wallet system. We tried as much as possible to follow every security rule from server to code design. But yesterday we experienced a bridge with javascript logic that made us temp… Continue reading Busines logic bypass issue
Shooting good video can be an arduous task if you’re working all by yourself. [Pave Workshop] developed a series of gesture-responsive tools to help out, with a focus on creating …read more Continue reading Gesture Controlled Filming Gear Works Super Intuitively
I have a Node.js app which has a lot of npm-dependencies, running on Linux (Centos) machine.
When Node starts, the script has access to the files outside its directory (as least by default), so malicious npm-package could traverse a direct… Continue reading Restrict node.js filesystem access
In the node.js express.js framework there is middleware support. Let’s assume I have two middleware – the first one, which verifies whether the JWT token is legit and not tampered with and the second middleware which doesn’t verify anymore… Continue reading Can the data between Express.js middleware be manipulated/tampered in any way?
When a user pays on the iOS app I want to let the node js backend know. What’s a secure way to authenticate the iOS app with the backend? Is it send a secret key and if so how do I keep this safe from
I am trying to perform prototype pollution exploit for a project to demonstrate the vulnerability to the owner.
So I am trying to pollute the toString() function from the user inputs.
The user input has two fields mode of contact and conta… Continue reading Prototype pollution in server instances exploit – what is the correct approach?
In this Help Net Security video, Austin Jones, Principal Software Engineer at ThreatX, explains what HTTP request smuggling is, and discusses a recently uncovered HTTP request smuggling vulnerability in Node.js (CVE-2022-35256). This vulnerability allo… Continue reading HTTP request smuggling vulnerability in Node.js (CVE-2022-35256)
What are the patterns (best practices, whatever) to prevent brute force (and features alike) in stateless API architectures that keep the system stateless? Couldn’t find anything regarding this topic.
I want to keep the system stateless to… Continue reading Brute force prevention and alike with stateless API architecture