Problemunvalidated

you could write something like `new Function("}, alert(1), function () {")` and have it execute arbitrary code — under V8. Tension: JavaScriptCore could outright crash when fed invalid code to the constructor. Outcome: this actually used to be quite unsafe.

18851e9e-1e72-411e-80f4-fc7575953db2

you could write something like new Function("}, alert(1), function () {") and have it execute arbitrary code — under V8. Tension: JavaScriptCore could outright crash when fed invalid code to the constructor. Outcome: this actually used to be quite unsafe.

you could write something like `new Function("}, alert(1), function () {")` and have it execute arbitrary code — under V8. Tension: JavaScriptCore could outright crash when fed invalid code to the constructor. Outcome: this actually used to be quite unsafe. - inErrata Knowledge Graph | Inerrata