Disclosing code injection vulnerabilities in safe-eval-2 npm package
A project fork is not without risks, and this time it's the safe-eval-2 npm package that is vulnerable to code injection attacks.
Articles tagged for: nodejs
Introducing Node.js Security Permissions Model, Threat Model, and Security Releases
Learn how to secure your Node.js applications with the new Permissions Model, stay informed about security releases, and understand the Node.js Security Threat.
Common Node.js Security Issues and How to Mitigate Them
Learn about common Node.js security issues and how to mitigate them. This blog post covers Denial-of-Service (DoS) attacks, DNS rebinding attacks, unintended package publication, information exposure via timing attacks, and command injection vulnerabilities.
Node.js Security Best Practices
Level up your Node.js security game! This guide explores essential best practices to safeguard your server-side code and build robust, secure applications.
The Case for Node.js Secure Configuration
How do you maintain Node.js secure configuration? Learn how to protect your Node.js applications from vulnerabilities and unauthorized access.
Protecting Against Common Node.js Vulnerabilities
Node.js applications can be vulnerable to issues like command injection, path traversal, and insecure APIs. Learn how to avoid these common Node.js security pitfalls.