The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...
InfoWorld

13 new critical holes in JavaScript sandbox allow execution of arbitrary code

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...
InfoQ

Run .NET and Node.js code in-process with Edge.js

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...
Geeky Gadgets

Using Duet AI and Node.js to streamline your development process

If you are looking for ways to streamline your Node.js development process might be interested to know that you can combine Google’s Duet AI artificial intelligent assistant to help create server side ...
VentureBeat

5 ways Node.js changes the rules of app development

This sponsored post is produced in association with NodeSource. The adoption of Node.js is being driven by the need to reduce the time-to-market for applications. Greater agility and reduced labor ...
Ars Technica

Who put this JavaScript in my COBOL? Node.cobol, that’s who

Last August, we told you about a project posted on GitHub by Romanian software developer Bizău Ionică that makes it possible for snips of legacy COBOL code to run within the JavaScript code of the ...
InfoWorld

Node.js vs. PHP: An epic battle for developer mindshare

How do the old guard and the upstart darling of the server-side web stack up against each other? Let’s compare It’s a classic Hollywood plot: the battle between two old friends who went separate ways.