The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
MacRumors

Apple Releases Safari Technology Preview 235 With Bug Fixes and Performance Improvements

Apple today released a new update for Safari Technology Preview, the experimental browser that was first introduced in March 2016. Apple designed ‌Safari Technology Preview‌ to allow users to test ...

New sandbox escape flaw exposes n8n instances to RCE attacks

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host.
KVIA

UTEP researchers find high level of infection in kissing bugs that transmit Chagas disease

EL PASO, Texas (KVIA) -- UTEP researchers have found unusually high levels in the Borderland of parasitic infection in insects that transmit Chagas disease. Chagas disease is spread by blood-feeding ...
GIGAZINE

'MicroQuickJS' that can compile and run JavaScript programs for embedded systems running on just 10KB of RAM

MicroQuickJS can be built and executed with 10KB of RAM and about 100KB of ROM as a C library. Other requirements include that it only supports a subset of JavaScript ...