Suchergebnisse - JavaScript engine vulnerability*

SoFi: Reflection-Augmented Fuzzing for JavaScript Engines

Autoren: HE, Xiaoyu XIE, Xiaofei LI, Yuekang et al.

Quelle: Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security. :2229-2242

Schlagwörter: vulnerability, OS and Networks, 0202 electrical engineering, electronic engineering, information engineering, Software Engineering, security, 02 engineering and technology, fuzzing, 3. Good health

Dateibeschreibung: application/pdf

Zugangs-URL: https://dl.acm.org/doi/pdf/10.1145/3460120.3484823

LLM-Guided Mutation Location Selection for Vulnerability-Aware JavaScript Engine Fuzzing

Autoren: Li, Jizhe Wang, Yongjun Xu, Haoran et al.

Quelle: 2025 IEEE 24th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) ; page 2994-2999

Verfügbarkeit: https://doi.org/10.1109/trustcom66490.2025.00355
http://xplorestaging.ieee.org/ielx8/11354467/11354567/11354990.pdf?arnumber=11354990

A Review on JavaScript Engine Vulnerability Mining

Autoren: Zeyan Kang

Quelle: Journal of Physics: Conference Series. 1744:042197

Schlagwörter: 0202 electrical engineering, electronic engineering, information engineering, 02 engineering and technology

Vulnerable JavaScript functions detection using stacking of convolutional neural networks

Autoren: Abdullah Sheneamer

Quelle: PeerJ Computer Science, Vol 10, p e1838 (2024)

Schlagwörter: Vulnerable Javascript functions detection, Code security, Security of web applications, JavaScript engine vulnerability, Cross-site scripting detection, Stacking convolutional neural networks (CNNs), Electronic computers. Computer science, QA75.5-76.95

Dateibeschreibung: electronic resource

Relation: https://peerj.com/articles/cs-1838.pdf; https://peerj.com/articles/cs-1838/; https://doaj.org/toc/2376-5992

Zugangs-URL: https://doaj.org/article/79d988f5828444de9300ba102e28bb1b

PatchFuzz: Patch Fuzzing for JavaScript Engines

Autoren: Wang, Junjie Ma, Yuhan Xie, Xiaofei et al.

Schlagwörter: Software Engineering (cs.SE), FOS: Computer and information sciences, Computer Science - Software Engineering, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR)

Zugangs-URL: http://arxiv.org/abs/2505.00289

PatchFuzz: Patch fuzzing for JavaScript engines.

Autoren: Wang, Junjie Xie, Zhihua Xie, Xiaofei et al.

Quelle: Information & Software Technology. Jun2026, Vol. 194, pN.PAG-N.PAG. 1p.

Schlagwörter: COMPUTER software testing, PENETRATION testing (Computer security), SOFTWARE upgrades

Not So Incognito: Exploiting Resource-Based Side Channels in JavaScript Engines

Autoren: Booth, Jo

Schlagwörter: Computer Science

Dateibeschreibung: application/pdf

Verfügbarkeit: http://nrs.harvard.edu/urn-3:HUL.InstRepos:17417578

Wasmati: An Efficient Static Vulnerability Scanner for WebAssembly

Autoren: Brito, Tiago Lopes, Pedro Santos, Nuno et al.

Index Begriffe: Computer Science - Cryptography and Security, text

URL: http://arxiv.org/abs/2204.12575

CovRL: Fuzzing JavaScript Engines with Coverage-Guided Reinforcement Learning for LLM-based Mutation

Autoren: Eom, Jueon Jeong, Seyeon Kwon, Taekyoung

Index Begriffe: Computer Science - Cryptography and Security, Computer Science - Computation and Language, Computer Science - Machine Learning, Computer Science - Software Engineering, D.4.6, I.2.5, D.2.4, text

URL: http://arxiv.org/abs/2402.12222

GHUNTER : Universal Prototype Pollution Gadgets in JavaScript Runtimes

Autoren: Cornelissen, Eric Shcherbakov, Mikhail Balliu, Musard

Index Begriffe: Computer Sciences, Datavetenskap (datalogi), Software Engineering, Programvaruteknik, Conference paper, info:eu-repo/semantics/conferenceObject, text

URL: http://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-367284
Proceedings of the 33rd USENIX Security Symposium, p. 3693-3710

Fuzzing JavaScript Engine APIs.

Autoren: Hodován, Renáta Kiss, Ákos

Quelle: Integrated Formal Methods (9783319336923); 2016, p425-438, 14p

Web Attack Detection Using the Input Validation Method: DPDA Theory.

Autoren: Khalaf, Osamah Ibrahim Sokiyna, Munsif Alotaibi, Youseef et al.

Quelle: Computers, Materials & Continua; 2021, Vol. 68 Issue 3, p3167-3184, 18p

Schlagwörter: JAVASCRIPT programming language, SQL, ROBOTS

Assessing Flood-Induced Soil Loss and Vulnerability in the Luni River Basin: A GIS-MCDM, AHP, and RUSLE Integration.

Autoren: Deopa, Hritika Resmi, M. R.

Quelle: Water Conservation Science & Engineering; 8/19/2025, Vol. 10 Issue 3, p1-23, 23p

Fuzzing for redundancy elimination vulnerabilities in just-in-time JavaScript engines.

Autoren: Jin, Yazhuo

Quelle: Proceedings of SPIE; 4/10/2025, Vol. 13228, p132281-132281, 1p

Soil erosion vulnerability analysis of Damodar River Basin, India using Revised Universal Soil Loss Equation (RUSLE) in Google Earth Engine (GEE).

Autoren: Ghosh, Joy Das, Sukanta Ghosh, Swagata et al.

Quelle: Discover Geoscience; Dec2025, Vol. 3 Issue 1, p1-31, 31p

Schlagwörter: UNIVERSAL soil loss equation, SOIL erosion, REMOTE sensing, SOIL conservation, GEOGRAPHIC information systems, SOIL erosion prediction, WATERSHEDS

Geografische Kategorien: INDIA

ПРОБЛЕМАТИКА КЛІЄНТСЬКОГО РЕНДЕРИНГУ В СУЧАСНІЙ ВСЕСВІТНІЙ МЕРЕЖІ. (Ukrainian)

Alternate Title: CLIENT-SIDE RENDERING ISSUES IN THE MODERN WORLDWIDE NETWORK. (English)

Autoren: Насенок, Кирило Олегович Войцеховська, Марія Михайлівн&

Quelle: Technical Sciences & Technology / Tehnìčnì Nauki ta Tehnologìï; 2024, Issue 4, p197-207, 11p

Schlagwörter: INTERNET traffic, WEB-based user interfaces, SEARCH engines, SEASONED equity offerings, COMMUNICATION infrastructure

On Detecting and Measuring Exploitable JavaScript Functions in Real-world Applications.

Autoren: Kluban, Maryna Mannan, Mohammad Youssef, Amr

Quelle: ACM Transactions on Privacy & Security; Feb2024, Vol. 27 Issue 1, p1-37, 37p

Schlagwörter: JAVASCRIPT programming language, PATTERN recognition systems, DENIAL of service attacks, DATA security, INTEGRATED software

基于动态行为链和会话变异的 API 访问 控制漏洞自动化检测方法. (Chinese)

Alternate Title: Automatic detection method of API access control vulnerability based on dynamic behavior chain and session mutation. (English)

Autoren: 任官荣 高 见 胡驷驹

Quelle: Application Research of Computers / Jisuanji Yingyong Yanjiu; Dec2025, Vol. 42 Issue 12, p3744-3751, 8p

Schlagwörter: COMPUTER security vulnerabilities, AUTOMATION, PENETRATION testing (Computer security), DETECTION algorithms, MIDDLEWARE

Geospatial Electrocution Risk Mapping Using Satellite Data: A Google Earth Engine Framework for Public Safety in Flood-Prone Cities.

Autoren: L, Ajay S A, Gautam Vinayagapriya, S.

Quelle: ITM Web of Conferences; 2/4/2026, Vol. 82, p1-9, 9p

Monitoring 'frozen commons' with MODIS in Google Earth Engine.

Autoren: Mnev, Pauline Nyland, Kelsey E.

Quelle: Polar Geography; Dec2025, Vol. 48 Issue 4, p259-274, 16p

Schlagwörter: CLIMATE change, NATURAL resources, ICE crystals, GEOGRAPHIC information systems, ARCTIC climate, REMOTE-sensing images

Geografische Kategorien: ALASKA, MONGOLIA