Title | ||
---|---|---|
NodeXP: NOde.js server-side JavaScript injection vulnerability DEtection and eXPloitation |
Abstract | ||
---|---|---|
Web applications are widely used, and new ways for easier and cost-effective methods to develop them are constantly introduced. A common omission among the new development and implementation techniques when designing them is security; Node.js is no exception, as Server-Side JavaScript Injection (SSJI) attacks are possible due to the use of vulnerable functions and neglecting to sanitize data input provided by untrusted sources. This specific kind of injection attack stands out because it has the potential to compromise servers, where the JavaScript code is executed. |
Year | DOI | Venue |
---|---|---|
2021 | 10.1016/j.jisa.2021.102752 | Journal of Information Security and Applications |
Keywords | DocType | Volume |
Code injection,Server-Side Javascript Injection,Detection,Exploitation,Deep learning,Node.js | Journal | 58 |
ISSN | Citations | PageRank |
2214-2126 | 1 | 0.39 |
References | Authors | |
0 | 5 |
Name | Order | Citations | PageRank |
---|---|---|---|
Christoforos Ntantogian | 1 | 1 | 0.39 |
Panagiotis Bountakas | 2 | 1 | 0.39 |
Dimitris Antonaropoulos | 3 | 1 | 0.39 |
Constantinos Patsakis | 4 | 1 | 0.39 |
Christos Xenakis | 5 | 221 | 28.00 |