A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Two vulnerabilities in n8n’s sandbox mechanism could be exploited for remote code execution (RCE) on the host system.

A high-severity OpenClaw flaw allows one-click remote code execution via token theft and WebSocket hijacking; patched in ...

Google released a Chrome security update fixing two high-severity flaws that could enable code execution or crashes via malicious websites.

Google released a Chrome security update fixing two high-severity flaws that could enable code execution or crashes via malicious websites.

Vulnerabilities in the NPM, PNPM, VLT, and Bun package managers could lead to protection bypasses and arbitrary code ...

LayerX researchers uncover a flaw in Anthropic's Claude Desktop Extensions that could lead to a RCE vulnerability if ...

Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...

Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers ...

WhatsApp users are being urged to change their settings after hackers were able to access personal data. A flaw was ...

San Andreas that got an any% speedrun of it down to a little under three hours, but recently an absolutely buckwild bug was ...

A high severity flaw in WinRAR allows crooks to execute malware remotely.