EarlyNarratives
Pricing
Start free trialSign in
Start free trialSign in
Signal

SimpleEval: Objects (including modules) can leak dangerous modules through to direct access inside the sandbox

SandboxJS affected by a Sandbox Escape Severity: critical Identifiers: [{"cve_id": "CVE-2026-26954"}, {"identifiers": [{"value": "GHSA-6r9f-759j-hjgv", "type": "GHSA"}, {"value": "CVE-2026-26954", "type": "CVE"}]}].

github
improper_access_control
Evidence locked
Today's free sample is only available for the edition's flagship signal.
BackUnlock Pro
Evidence preview
  • github.com/ctfer-io/monitoring Vulnerable to Improper Access Control
    github_advisories
  • SimpleEval: Objects (including modules) can leak dangerous modules through to direct access inside the sandbox
    github_advisories
  • Apollo Federation vulnerable to prototype pollution via incomplete key sanitization
    github_advisories
  • SandboxJS affected by a Sandbox Escape
    github_advisories