You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
There is a problem with CTinyJS :: statement. In the TinyJS.cpp + 2042 line, the pointer reference is wrong, as shown in the figure:
When the object link was obtained from the base function, the null pointer was not checked, which caused the null pointer reference and triggered a crash.
PoC construction
Add a null character after the expression in the js script:
In the picture, "j = 0;" is the empty character.
The text was updated successfully, but these errors were encountered:
Enviroment
poc:
vulnerability description:
There is a problem with CTinyJS :: statement. In the TinyJS.cpp + 2042 line, the pointer reference is wrong, as shown in the figure:
When the object link was obtained from the base function, the null pointer was not checked, which caused the null pointer reference and triggered a crash.
PoC construction
Add a null character after the expression in the js script:
In the picture, "j = 0;" is the empty character.
The text was updated successfully, but these errors were encountered: