Breaking down the Node.js sandbox bypass CVE-2023-30587
Turns out, a lot of people want to try to safely run untrusted code, and that's hard. Pixee Engineer Matt Austin (@mattaustin) recently found a bypass of the new and experimental Node.js sandbox in versions before 20.3.1, and it just received a $3K a...
blog.pixee.ai3 min read
Chathrapathi Nikhil Kandagatla
Web developer/Designer and a budding entrepreneur
I liked the way pixeebot has been finding vulnerabilities and this article shows exactly how the pixeebot team does it