NodeJS - Platform
Type: Platform
Frequency: Mentioned 5 times
Threat intelligence on NodeJS (Platform). Found in 5 clusters.
Related Threat Clusters
- High-Severity Stored XSS Vulnerability in HAX CMS (CVE-2026-48527) (Threat Score: 74.0)
- Malicious Windsurf IDE Extension Uses Solana Blockchain to Steal Developer Credentials (Threat Score: 69.5)
- Critical Vulnerabilities in Node.js Allow Command Injection and Symlink Traversal (Threat Score: 63.8)
- Hive0163 Ransomware Group Deploys AI-Generated Slopoly Malware (Threat Score: 51.9)
- Critical vm2 Vulnerability in Node.js Allows Code Execution (Threat Score: 45.3)
Recent Articles
- CVE-2026-48527 AKAOMA CVE VULNERABILITIES / 6h HAX CMS helps manage microsite universe with PHP or NodeJs backends. Versions up to and including 26.0.0 are affected by a stored cross-site scripting (XSS) vulnerability in the `/system/api/saveNode` endpoint. An authenticated user with a permission to edit pages can bypass the HTML sanitizer by injecting an event handler attribute without whitespace before the attribute name. @haxtheweb/haxcms-nodejs 26.0.1 and haxcms-php 26.0.2 patch the issue. - cve.akaoma.com
- Windsurf IDE Extension Drops Malware via Solana Blockchain - Bitdefender
- Hive0163 Ransomware Operators Use AI - Thecyberexpress
- Vulnerabilites collected today, Thursday 5/3 - Meterian: Daily Vulnerabilities - Qa.Meterian
- Critical sandbox escape flaw discovered in popular vm2 NodeJS library - Bleepingcomputer