CVE-2026-43898

creationtimestamp| type| source ---|---|--- 2026-05-09 09:46:56+00:00| published-proof-of-concept| https://github.com/nyariv/SandboxJS/security/advisories/GHSA-g8f2-4f4f-5jqw 2026-05-15 04:29:28+00:00| seen| https://dnsc.ro/citeste/alerta-vulnerabilitate-critica-in-biblioteca-sandboxjs 2026-05-25...

CVE-2026-26954

SandboxJS is a JavaScript sandboxing library. Prior to 0.8.34, it is possible to obtain arrays containing Function, which allows escaping the sandbox. Given an array containing Function, and Object.fromEntries, it is possible to construct p: Function where p is any constructible property. This...