The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...
Athlon Sports

Air Jordan 5 ‘Fire Red’ Black Tongue, 35th Anniversary: Where to Buy

The Air Jordan 5 ‘Fire Red’ Black Tongue returned September 2025 as the most OG-accurate retro yet. Here’s where to buy on the resale market 8 months later. The Air Jordan 5 “Fire Red” might be the ...
Bleeping Computer

Popular node-ipc npm package compromised to steal credentials

Hackers have injected credential-stealing malware into newly published versions of node-ipc, a popular inter-process communication package, in a new supply chain attack targeting npm. The node-ipc ...
InfoWorld

13 new critical holes in JavaScript sandbox allow execution of arbitrary code

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...
GitHub

stepw66/Clone-website-downloader

--mirror – Makes (among other things) the download recursive.--convert-links – convert all the links (also to stuff like CSS stylesheets) to relative, so it will be suitable for offline ...
GitHub

jeremy-lee93/website-downloader

--mirror – Makes (among other things) the download recursive.--convert-links – convert all the links (also to stuff like CSS stylesheets) to relative, so it will be suitable for offline ...