WebStorm IDE received new update

"Smartest JavaScript IDE" now has a 2017.2.1 version
03 August 2017   2867
JavaScript

JavaScript is a lightweight interpreted or JIT-compiled programming language with first-class functions

A JavaScript IDE by JetBrains received new update. Now it's version 2017.2.1.

According to the developers, WebStorm is "the smartest JavaScript IDE".  WebStorm brings you smart coding assistance for JavaScript and compiled-to-JavaScript languages, Node.js, HTML and CSS. Enjoy code completion, powerful navigation features, on-the-fly error detection, and refactoring for all of these languages.

Features:

  • Angular, React, Vue.js and Meteor support
  • Smart Editor
  • Convenient navigation and search
  • Easy debugging, testing and tracing 
  • Seamless tool integration

What's new in version 2017.2.1?  

  • Karma integration now properly sees changes when re-compiling the code
  • React render method is no longer marked as static 
  • Flow: auto import now works for types; support for union optional type as arrow function return type
  • Auto import for React components now works in .tsx files 
  • Tab limit can again be set to 1 
  • Errors from ESLint are now highlighted in .vue files 
  • Debugging React Native apps: you can now use Chrome as a debugging backend instead of Node.js 8 

You can learn more of create issues in the Release Notes

Supra Smart Cloud TV to be Hacked

Now hacker can replace video being watched with own content
04 June 2019   298

A vulnerability has been identified on the Supra Smart Cloud TV (CVE-2019-12477). It makes possible to replace the transmission currently being watched for the content of the attacker. As an example, the output of a bogus emergency warning is shown.

To attack, just send a specially designed network request that does not require authentication. In particular, hacker can contact the handler "/ remote / media_control? Action = setUri & uri =" by specifying the URL of the m3u8 file with the video parameters, for example "http://192.168.1.155/remote/media_control?action=setUri&uri=http://attacker .com / fake_broadcast_message.m3u8 ".

In most cases, access to the IP address of the TV is limited to the internal network, but since the request is sent via HTTP, it is possible to use methods to access internal resources when the user opens a specially designed external page (for example, under the request of a picture or using the DNS rebinding method).