Node.js

The Schema Poisoning: How a 9.4-Severity RCE Vulnerability in Protobuf.js Hijacks Node.js Servers Protobuf.js RCE vulnerability

Protobuf.js RCE vulnerability

The Schema Poisoning: How a 9.4-Severity RCE Vulnerability in Protobuf.js Hijacks Node.js Servers

Do Son April 21, 2026

An innocuous data description file can precipitously metamorphose into a vehicle for server hijacking. Security specialists at...

Critical (CVSS 9.9): Samlify Flaw Allows Unauthenticated SSO Bypass Operation CACTUS Vulnerability Samlify vulnerability

Operation CACTUS Vulnerability Samlify vulnerability

Critical (CVSS 9.9): Samlify Flaw Allows Unauthenticated SSO Bypass

Do Son May 23, 2025

A critical vulnerability has been discovered in Samlify, a library designed to integrate SAML authentication into Node.js...