The Hacker News

Critical Node.js Vulnerability Can Cause Server Crashes via async_hooks Stack Overflow

Node.js released updates fixing a critical DoS flaw caused by async_hooks stack crashes, tracked as CVE-2025-59466, impacting ...
The Hacker News

Critical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on Servers

A critical CVSS 9.2 flaw in AdonisJS bodyparser lets attackers write arbitrary files via path traversal when uploads are ...

Node.js: Updated versions patch high-risk security vulnerabilities

Several security vulnerabilities, some classified as high-risk, have been discovered in the popular JavaScript runtime ...
TheServerSide

Node.js file upload example with Ajax and JavaScript

Community driven content discussing all aspects of software development from DevOps to design patterns. The art of the file upload is not elegantly addressed in languages such as Java and Python. But ...
heise online

JavaScript runtime Node.js 23 revises module and test support

The open source JavaScript runtime Node.js has reached version 23. The most important new features include the standard activation of require(esm) for Node.js applications, remote support for 32-bit ...
CSO Online

Critical jsPDF vulnerability enables arbitrary file read in Node.js deployments

The path traversal bug allows attackers to include arbitrary filesystem content in generated PDFs when file paths are not ...
InfoWorld

Node.js gets a new master

A neutral third party, the Node.js Foundation, will take over jurisdiction of popular server-side JavaScript platform, though Joyent will remain heavily involved Node.js, the popular server-side ...
InfoWorld

6 things you should know about Node.js

JavaScript is eating the world, with new tools and enhancements arriving at a breakneck pace. With Node.js, an open source runtime system invented in 2009 by Ryan Dahl, that reach has extended to the ...