Popular JavaScript library can be hacked allowing access to user accounts

A package with 26 million weekly downloads carried a major flaw which has since been addressed.

Popular Forge library gets fix for signature verification bypass flaw

A vulnerability in the 'node-forge' package, a popular JavaScript cryptography library, could be exploited to bypass ...