Request forgery attacks are among the oldest threats to Web applications, traditionally
caused by server-side confused deputy vulnerabilities. However, recent advancements in …

Code vulnerability detection has long been a critical issue due to its potential threat to
computer systems. It is imperative to detect source code vulnerabilities in software and …

The security of Web Services for users and developers is essential; since WebAssembly is a
new format that has gained attention in this type of environment over the years, new …

The increasing adoption of WebAssembly (Wasm) for performance-critical and security-
sensitive tasks drives the demand for WebAssembly program comprehension and reverse …

WebAssembly is a low-level bytecode format that powers applications and libraries running
in browsers, on the server side, and in standalone runtimes. Call graphs are at the core of …

Binary rewriting is a widely adopted technique in software analysis. WebAssembly (Wasm),
as an emerging bytecode format, has attracted great attention from our community …

While static analysis tools that rely on Code Property Graphs (CPGs) to detect security
vulnerabilities have proven effective, deciding how much information to include in the …

The recently introduced WebAssembly standard aims to form a portable compilation target,
enabling the cross-platform distribution of programs written in a variety of languages. In this …

WebAssembly is the fourth officially endorsed Web language. It is recognized because of its
efficiency and design, focused on security. Yet, its swiftly expanding ecosystem lacks robust …

Wasm runtime is a fundamental component in the Wasm ecosystem, as it directly impacts
whether Wasm applications can be executed as expected. Bugs in Wasm runtime bugs are …