Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...

Anthropic's Mythos AI is being called powerful enough to uncover hidden cyber threats, but Mozilla's latest report shows how it can also help defend users. The company says Mythos Preview helped ...

Mythos’s ability to autonomously exploit flaws challenges the notion of ‘secure by default’.

There's a 15-year-old bug hiding in Firefox's element – one of the most boring tags in HTML. It survived over a decade of ...

Security researchers found TCLBANKER, a Brazilian banking trojan that hijacks WhatsApp and Outlook accounts to spread crypto ...

Anthropic's Mythos AI is being called powerful enough to uncover hidden cyber threats, but Mozilla's latest report shows how ...

The vm2 sandbox component of the open-source JavaScript runtime environment Node.js is vulnerable with certain settings.

If you have a JavaScript (*.js) file containing code, it's not unusual for your code to reference code held in another JavaScript file. If you're using more recent versions of Visual Studio, you'll ...

Critical flaws affecting core components and extensions in PostgreSQL and MariaDB could allow remote code execution. The bugs ...

Critical cPanel flaw under attack, Copy Fail Linux privilege escalation, TeamPCP supply chain campaign, GitHub RCE & major ...