CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Nyariv: >> Sandboxjs >> 0.8.27 Security Vulnerabilities

CVE-2026-25587

SandboxJS is a JavaScript sandboxing library. Prior to 0.8.29, as Map is in SAFE_PROTOYPES, it's prototype can be obtained via Map.prototype. By overwriting Map.prototype.has the sandbox can be escaped. This vulnerability is fixed in 0.8.29.

CVSS Score

10.0

EPSS Score

0.006

Published

2026-02-06

Page 2

Vulnerabilities

Vulnerable Software

Nyariv: >> Sandboxjs >> 0.8.27 Security Vulnerabilities

Products

Pricing

Contact Us