4 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-44573
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Next.js is a React framework for building full-stack web applications. From 12.2.0 to before 15.5.16 and 16.2.5, Applications using the Pages Router with i18n...
Exploit for Improper Authorization in Vercel Next.Js
CVE-2025-29927 — Next.js middleware authorization bypass...
Next.js 9.5.5 < 14.2.15 Authorization Bypass
The version of Next.js installed on the remote host is 9.5.5 prior to 14.2.15. It is, therefore, affected by Authorization Bypass if the authorization check occurs in middleware. Note that the scanner has not attempted to exploit this issue but has instead relied only on application's self-report...
CVE-2025-29927 Authorization Bypass in Next.js Middleware
Next.js is a React framework for building full-stack web applications. Starting in version 1.11.4 and prior to versions 12.3.5, 13.5.9, 14.2.25, and 15.2.3, it is possible to bypass authorization checks within a Next.js application, if the authorization check occurs in middleware. If patching to ...