Critical sandbox escape flaw discovered in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
GitHub

A JavaScript library for doing geometry.

In vanilla, a geometric global is exported. You can use the latest version from unpkg. Returns an interpolator function given a line [a, b]. The returned interpolator ...
GitHub

Inject JS to the DOM to find vulnerable JavaScript libraries

This module provides a JavaScript bundle that can be injected into the DOM and detect which JavaScript libraries and versions are running, as well as the vulnerabilities associated with them. This ...