The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
CSO Online

Critical bug in popular vm2 Node.js sandboxing library puts projects at risk

Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
Analytics Insight

5 Online Beginner Courses with Certificates and Guided Projects in 2026

If you want your skills to show up in real work, you need more than theory. Guided projects help you move from “I watched a course” to “here is what I built and ...
WIProud

Black Knight becomes sole shareholder of Ligue 1 Lorient as part of multi-club ownership strategy

The French Ligue 1 club Lorient announced Wednesday that the Black Knight Football Club group had become its sole shareholder ...
WIProud

Indiana adds to celebration as football champs take victory lap and basketball team beats Purdue

Indiana Hoosiers fans got their dream doubleheader Tuesday night. First, they watched college football’s new national ...
InfoWorld

Kotlin-based Ktor 3.4 boosts HTTP client handling

Update to the Kotlin-backed framework brings duplex streaming to the OkHttp client engine and the ability to cancel in-flight ...

How Tennessee’s Speaker of the House Helped Keep a Payday Lender’s Struggling Sports Gambling Company Alive

The post How Tennessee’s Speaker of the House Helped Keep a Payday Lender’s Struggling Sports Gambling Company Alive appeared ...
Two Verbs

Live Ice Storm Webcams Tracker – Show Dangerous Conditions Across 7 States

Ice storm webcams are tracking freezing rain and deteriorating road conditions across the central and eastern United States.