{"vulnerability": "cve-2026-46625", "sightings": [{"uuid": "78ab7492-6cb1-4367-8962-d0da0beea52b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-46625", "type": "published-proof-of-concept", "source": "https://github.com/js-cookie/js-cookie/security/advisories/GHSA-qjx8-664m-686j", "content": "", "creation_timestamp": "2026-05-16T05:48:24.000000Z"}, {"uuid": "45a9a976-95a4-4ff2-9ba2-b7d412666871", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46625", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mnxtfp7clr23", "content": "CVE-2026-46625 - Prototype Pollution in js-cookie < 3.0.7. CVSS 7.5. Unpatched. Hijacks Object.prototype via __proto__ assignment. Update immediately. #CVE #JavaScript #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-46625/", "creation_timestamp": "2026-06-10T23:09:53.292225Z"}]}