Aleksey Solovev, Nikita Sveshnikov, Vladimir Razov — December 2025
PT Swarm
A comprehensive analysis of popular HTML-to-PDF conversion libraries across PHP, JavaScript, and Java. Identified 13 vulnerabilities, 7 intentional behaviors, and 6 potential misconfigurations in widely-used libraries like TCPDF, html2pdf, and jsPDF.
Nikita Sveshnikov — January 2024
PT Swarm
Research on exploiting CORS misconfigurations despite modern browser anti-tracking mechanisms. Demonstrates how user-initiated actions can grant temporary storage access, bypassing Firefox’s Enhanced Tracking Protection and Safari’s Intelligent Tracking Prevention.