No posts match your filters.
2026 4 posts
April 2
- 22 AprCVE-2026-3910: Inappropriate implementation in CanWriteElideBarrier
V8's Maglev compiler has an inappropriate implementation in CanWriteElideBarrier, leading to a User-after-free vulnerability.
- 13 AprCVE-2023-3079: V8 Inline Cache Type Confusion
A logic bug in V8's Inline Cache subsystem that leads to type confusion via incorrect element kind handling for JSArgumentsObject, enabling hole leak and arbitrary read/write.
January 2
- 18 Jan[PWN COLLEGE] - V8 Exploitation Part 2
Continuing the V8 Exploitation journey — pwn.college Browser Exploitation levels 4–6: setLength OOB, offByOne abusing fast-properties, and functionMap type confusion.
- 02 Jan[PWN COLLEGE] - V8 Exploitation Part 1
New journey into V8 Exploitation — pwn.college Browser Exploitation levels 1–3: environment setup, ArrayRun, GetAddressOf / ArbRead32 / ArbWrite32, GetFakeObject, and JIT spraying.
2025 1 post