JavaScript has become one of the most prevalent programming languages. Unfortunately,
some of the unique properties that contribute to this popularity also make JavaScript …

JavaScript has been a de facto standard language for client-side web programs, and now it
is expanding its territory to general purpose programs. In this article, we classify the client …

The NODE. JS ecosystem has lead to the creation of many modern applications, such as
server-side web applications and desktop applications. Unlike client-side JavaScript code …

Many JavaScript programs are written in an event-driven style. In particular, in server-side
Node. js applications, operations involving sockets, streams, and files are typically …

Taint-style vulnerabilities, such as OS command injection and path traversal, are common
and severe software weaknesses. There exists an inherent trade-off between analysis …

JavaScript is widely used in Web applications because of its flexibility and dynamic features.
However, the latter pose challenges to static analyses aimed at finding security …

JavaScript has become one of the most popular programming languages, yet it is known for
its suboptimal design. To effectively use JavaScript despite its design flaws, developers try to …

We present an analysis for identifying determinate variables and expressions that always
have the same value at a given program point. This information can be exploited by client …

PHP is one of the most popular languages for server-side application development. The
language is highly dynamic, providing programmers with a large amount of flexibility …

Although studies have shown that at least one in ten Web pages contains a client-side XSS
vulnerability, the prevalent causes for this class of Cross-Site Scripting have not been …