Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used JavaScript implementation of Google's Protocol Buffers. [...]
Critical flaw in Protobuf library enables JavaScript code execution
Résumé + lien vers la source. Sans paywall, sans tracking.