Ghostwire

CVE-2026-6594: A vulnerability was determined in brikcss merge up to 1.3.0. This affects an unknown part. Executing a manipulation of...

HIGH CVSS 7.3 Exploit Available 1 PoC

Published: April 20, 2026 | Last Modified: April 20, 2026

Description

A vulnerability was determined in brikcss merge up to 1.3.0. This affects an unknown part. Executing a manipulation of the argument __proto__/constructor.prototype/prototype can lead to improperly controlled modification of object prototype attributes. The attack may be performed from remote. The vendor was contacted early about this disclosure but did not respond in any way.

Ghostwire Analysis — What This Means Practically

High CVSS score indicates significant risk — exploitation could lead to substantial data exposure or system compromise.
1 proof-of-concept exploit available on GitHub. Public exploit code lowers the barrier for both researchers and attackers.

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Proof-of-Concept Exploits (1)

sudo-secure/security-research

CVE-2026-6594: A vulnerability was determined in brikcss merge up to 1.3.0. This affects an unknown part. Executing a manipulation of...

Description

Ghostwire Analysis — What This Means Practically

Proof-of-Concept Exploits (1)

Security Coverage (1 articles)

References