The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized ...

This WebUI vulnerability allows remote code execution - here's how to stay safe

Open WebUI carried CVE-2025-64496, a high-severity code injection flaw in Direct Connection features Exploitation could ...
ZDNet

uBlock Origin gets option to block all JavaScript execution by default

uBlock Origin, one of the most popular ad blockers today, has released an update over the weekend that adds an option to block JavaScript (JS) execution on a page altogether. What this means is that ...