CVE-2026-44002 | patriksimek vm2 up to 3.10.x getThis/getFunction information exposure (GHSA-v27g-jcqj-v8rw)

Inserito da Angelo Barbosa | Mag 13, 2026 | CVE

A vulnerability categorized as problematic has been discovered in patriksimek vm2 up to 3.10.x. Affected by this issue is the function getThis/getFunction. The manipulation results in information exposure through error message.

This vulnerability is reported as CVE-2026-44002. The attack can be launched remotely. No exploit exists.

It is advisable to upgrade the affected component.

CVE-2026-44002 | patriksimek vm2 up to 3.10.x getThis/getFunction information exposure (GHSA-v27g-jcqj-v8rw)

Post correlati

CVE-2025-31701 | Dahua IPC/SD protection mechanism

CVE-2024-47181 | Contiki-NG up to 4.9 rpl_ext_header_hbh_update type conversion (GHSA-crjw-x84h-h6x3)

CVE-2025-8282 | SureForms Plugin up to 1.9.0 on WordPress cross site scripting

CVE-2024-36138 | Node.js up to 18.20.3/20.15.0/22.4.0 on Windows Incomplete Fix CVE-2024-27980 child_process.spawn/child_process.spawnSync command injection