• caglararli@hotmail.com
  • 05386281520

‘Hidden Property Abusing’ Allows Attacks on Node.js Applications

Çağlar Arlı      -    3 Views

‘Hidden Property Abusing’ Allows Attacks on Node.js Applications

A team made up of security researchers from the Georgia Institute of Technology has found a way to exploit Node.js applications by manipulating the hidden properties used to track internal program states, the group plans to announce at the virtual Black Hat USA security conference next week.

The novel attack technique, dubbed Hidden Property Abusing, allows a remote attacker to inject new values into Node.js programs through passing objects that the framework, under the right...
'Hidden Property Abusing' Allows Attacks on Node.js Applications