The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Critical sandbox escape flaw discovered in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
Junior Mining Network

Equity Metals Announces Crews and Drill Mobilized to Commence Winter '26 Program on the Silver Queen Ag-Au Property, British Columbia; Arlington Property Drill Results Evaluated

Vancouver, British Columbia-- (Newsfile Corp. - January 28, 2026) - Equity Metals Corporation (TSXV: EQTY) ("Equity" or the "Company") reports that crews have mobilized in preparation for drilling on ...