1. Hono Framework Cookie Prefix Bypass: Parsing Gap Enables Attacker Override of Legitimate Cookies
A parsing discrepancy in Hono, a web application framework supporting multiple JavaScript runtimes, allows cookie prefix protections to be bypassed through non-breaking space character injection. Versions prior to 4.12.12 contain a flaw where cookie names treated as distinct by browsers are normalized to the same key b...