CVE-2026-45357 is a high-severity denial-of-service vulnerability in LiquidJS, a JavaScript template engine used in web applications and development pipelines. An attacker can bypass memory and render limits to exhaust server resources, causing service disruption. Organizations running LiquidJS in internet-facing or user-input-processing contexts face availability risk; precise affected version ranges remain unconfirmed from available sources.