{"uuid": "bb065a28-ae5e-4284-b74e-033022fae06c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9595", "type": "seen", "source": "https://bsky.app/profile/bjohansebas.me/post/3modjudajts2z", "content": "\ud83d\udd12 New advisory: webpack-dev-server (CVE-2026-9595).\nA proxy with context / and ws: true intercepts the HMR WebSocket, leaking cookies to the backend.\n\u2705 Patched in 5.2.5\n github.com/webpack/webp...", "creation_timestamp": "2026-06-15T14:51:06.228928Z"}