Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...
IEEE

Precise String Domain for Analyzing JavaScript Arrays and Objects

Abstract: JavaScript is a scripting language that is used for creating web pages. It is widely used and a top contender in realworld usage. JavaScript has many dynamic features that makes it ...

A Comprehensive Guide to JSON Validation and Cleaning

This guide delves into the intricacies of JSON validation and cleaning, providing essential insights and practical steps to ...

Understanding JSON Validation and Cleaning for Robust Data Management

This guide explores the fundamental concepts of JSON validation and cleaning, providing insights into structuring data, ...
IEEE

MonoDGP: Monocular 3D Object Detection with Decoupled-Query and Geometry-Error Priors

Abstract: Perspective projection has been extensively utilized in monocular 3D object detection methods. It introduces geometric priors from 2D bounding boxes and 3D object dimensions to reduce the ...