Exploit for Prototype Pollution in Salesforce Tough-Cookie

July 28, 2025 invoker category_exploit

Exploit Details

Basic Information

Exploit Title Exploit for Prototype Pollution in Salesforce Tough-Cookie
Exploit ID E722EC49-18FE-50A2-BB36-862266A3CB2D
Type githubexploit
Published 2025-07-28T18:01:14
Modified 2025-07-28T18:23:05

CVSS Information

CVSS Score 9.8
Severity CRITICAL
Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Analysis

AI Description This vulnerability is a critical Prototype Pollution issue in Salesforce’s Tough-Cookie module, allowing attackers to inject malicious properties into JavaScript objects, potentially leading to remote code execution.
AI Severity Critical
AI Vendor Salesforce
AI Product Salesforce Tough-Cookie
AI Version Unknown

CVE Information

  • CVE-2023-26136

Exploit Description

RFC6265 Cookies and CookieJar for Node.js Synopsis “` javascript…

View Full Exploit Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.