Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...
IEEE

Electromagnetic Scattering by Finite Periodic Arrays Using the Characteristic Basis Function and Adaptive Integral Methods

Abstract: We introduce a novel technique that combines the AIM algorithm with the characteristic basis function method (CBFM) to solve the problem of electromagnetic scattering by large but finite ...
IEEE

Precise String Domain for Analyzing JavaScript Arrays and Objects

Abstract: JavaScript is a scripting language that is used for creating web pages. It is widely used and a top contender in realworld usage. JavaScript has many dynamic features that makes it ...