CVE-2023-26136

This repository contains a detailed analysis and patched version of the 'tough-cookie' library, addressing CVE-2023-26136. It includes technical documentation, code comparisons, and patched files to mitigate the vulnerability.

This repository contains a functional exploit PoC for CVE-2023-26136, targeting the 'tough-cookie' library. The exploit demonstrates a vulnerability in cookie parsing and handling, likely leading to improper validation or manipulation of cookie attributes.

This repository provides a detailed technical analysis and patch for CVE-2023-26136, a prototype pollution vulnerability in tough-cookie 2.5.0. It includes a fix, test suite, and exploit demonstration.

This repository provides a detailed analysis and patch for CVE-2023-26136, a prototype pollution vulnerability in the `tough-cookie` library. It includes both the original vulnerable code and a patched version, with technical explanations of the root cause and mitigation.

This repository contains a patched version of the `tough-cookie` package (v2.5.0) to address CVE-2023-26136, a prototype pollution vulnerability. It includes functional exploit code demonstrating the vulnerability and its fix, along with detailed technical analysis and unit tests.

This repository contains a functional exploit PoC for CVE-2023-26136, demonstrating a prototype pollution vulnerability in the 'tough-cookie' package (v2.5.0). The exploit manipulates the `__proto__` property to pollute the global object prototype, which can lead to arbitrary property injection.

This repository contains a functional PoC for CVE-2023-26136, a prototype pollution vulnerability in tough-cookie versions before 4.1.3. The exploit demonstrates the vulnerability by setting a cookie with a domain of '__proto__' and verifying the pollution effect.