The Hacker News

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

Active attacks exploit Metro4Shell (CVE-2025-11953) in React Native CLI to execute commands and deploy Rust malware.
GitHub

Mearman/Unicode-TeX-Character-Converter

Initially, this library was designed to assist with the conversion of content within BibTeX files. However, its utility extends to any scenario requiring conversion between Unicode and LaTeX/BibTeX ...
IEEE

HeVulD: A Static Vulnerability Detection Method Using Heterogeneous Graph Code Representation

Abstract: Vulnerability detection in source code has been a focal point of research in recent years. Traditional rule-based methods fail to identify complex and unknown vulnerabilities, leading to ...
The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A security vulnerability has been disclosed in the popular binary-parser npm library that, if successfully exploited, could result in the execution of arbitrary JavaScript. The vulnerability, tracked ...