Up a level |
(2023) SandDriller: A Fully-Automated Approach for Testing Language-Based JavaScript Sandboxes.
(2023) SecBench.js: An Executable Security Benchmark Suite for Server-Side JavaScript.
(2023) Jack-in-the-box: An Empirical Study of JavaScript Bundling on the Web and its Security Implications.
(2023) Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js.
(2023) Bilingual Problems: Studying the Security Risks Incurred by Native Extensions in Scripting Languages.