ZTaint-Havoc: from Havoc Mode to Zero-Execution Fuzzing-Driven Taint Inference

Fuzzing is a widely used technique for discovering software vulnerabilities, but identifying hot bytes that influence program behavior remains challenging. Traditional taint analysis can track such bytes white-box, but suffers from scalability issue. Fuzzing-Driven Taint Inference FTI offers a...

PT-2024-12146 · Corax · Corax

Name of the Vulnerable Software and Affected Versions: Corax affected versions not specified Description: The issue concerns Corax, an extensible edge-coverage-guided grey-box fuzzing framework written in PHP. It is designed to automatically detect and report vulnerabilities for PHP applications,...