One of the settings in Discord's Electron build, "contextIsolation," was set to false, and this could allow JavaScript code outside of the app to influence internal code, such as the Node.js function.

Security researchers have confirmed attackers are actively exploiting a critical vulnerability in Wing FTP Server, a widely used solution for managing file transfers. Researchers at Huntress say the ...

This component is a Javascript API that lets users render 2D and 3D graphics within their browser. ... could allow for arbitrary code execution and is under active attack. August 18, 2022.

Git has patched two critical severity security vulnerabilities that could allow attackers to execute arbitrary code after successfully exploiting heap-based buffer overflow weaknesses.

For Zoom, the hits just keep on coming. The latest is the arrival of a long-mooted remote code execution (RCE) exploit that is said to be harboured in the controversial local web server which had ...

The code execution security issue discovered by Cisco Talos' senior research engineer Marcin Towalski is tracked as CVE-2020-6492 and it received a high severity 8.3 CVSSv3 Score.