writeups.xyz / Node.js

Title	Vulnerabilities	Programs	Authors
BatBadBut: You can't securely execute commands on Windows	OS Command Injection Windows	PHP Node.js Rust Haskell Yt-Dlp	RyotaK (@Ryotkak)
HTTP/2 CONTINUATION Flood: Technical Details	HTTP/2 CONTINUATION Flood DDoS	Golang Node.js Apache Tomcat Apache HTTP Server Apache Traffic Server IBM (WebSphere) Mozilla (Thunderbird) Envoy Tempesta FW H2 (Rust Crate) CERT/CC	Bartek Nowotarski
HTTP Chunk Extension Processing Vulnerabilities	HTTP/2 CONTINUATION Flood DoS	Golang Node.js Hyper (Rust HTTP Library) Puma (Rails HTTP Library)	Bartek Nowotarski
Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js	RCE Prototype Pollution DoS	Rocket.Chat NPM CLI Parse Server Node.js	Mikhail Shcherbakov Musard Balliu Cristian-Alexandru Staicu
CVE-2022-35256 - HTTP Request Smuggling in NodeJS	HTTP Request Smuggling	Node.js	VVX7 (@VV_X_7)
CVE-2022-32223 Discovery: DLL Hijacking via npm CLI	DLL Hijacking Privilege Escalation	Node.js	Yakir Kadkoda

Page 1 of 1