Node.js – TheCyberThrone

Node.js fixes Triple vulnerabilities

The Node.js Project has released critical security patches addressing multiple vulnerabilities affecting Node.js 24.x, 23.x, 22.x, and 20.x. These flaws, if left unpatched, could allow attackers to remotely crash systems,…

PravinKarthik May 17, 2025

CVE-2025-23083 impacts Node.js

Background Node.js is a widely-used JavaScript runtime built on Chrome's V8 JavaScript engine, known for its efficiency and ability to handle asynchronous operations. The platform is integral to many web…

PravinKarthik January 22, 2025

Node.Js Fixes Multiple Vulnerabilities -CVE-2024-27980

The Node.js Project has released a security update to address multiple vulnerabilities, including a high-severity flaw that could allow attackers to bypass security measures and execute arbitrary code. The most…

PravinKarthik July 9, 2024

Node.Js Security Bug Fixes

Node.js recently has patched for new security vulnerabilities. These vulnerabilities can be exploited by attackers to trigger denial of service attacks, bypass security restrictions, and disclose sensitive information. Cookie Leakage…

PravinKarthik October 17, 2023

Node.js fixes numerous vulnerabilities including OpenSSL

Node.js has released seven fixes for vulnerabilities in the JavaScript runtime environment that could lead to arbitrary code execution and HTTP request smuggling, among other attacks. Three vulnerabilities are rated as…

PravinKarthik July 11, 2022

Critical Issues patched in Strapi – could lead to a data breach

Researchers uncovered two critical vulnerabilities in JSON that can expose data in the open-source Node.js headless content management system Strapi. Strapi is a popular open-source headless CMS software with built-in…

PravinKarthik May 20, 2022

Discord Servers Hijacked By Malicious NPM Packages

Researchers discovered 17 malicious packages in the NPM (Node.js package manager) repository that were developed to hijack Discord servers. The libraries allow stealing access tokens and environment variables from systems running giving…

PravinKarthik December 10, 2021