Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-44573

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Next.js is a React framework for building full-stack web applications. From 12.2.0 to before 15.5.16 and 16.2.5, Applications using the Pages Router with i18n...

7.5CVSS5.8AI score0.00457EPSS
Exploits1References2
GithubExploit
GithubExploit
added 2025/09/20 8:12 a.m.272 views

Exploit for Improper Authorization in Vercel Next.Js

CVE-2025-29927 — Next.js middleware authorization bypass...

9.1CVSS7.1AI score0.99621EPSS
Exploits58
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.6 views

Next.js 9.5.5 < 14.2.15 Authorization Bypass

The version of Next.js installed on the remote host is 9.5.5 prior to 14.2.15. It is, therefore, affected by Authorization Bypass if the authorization check occurs in middleware. Note that the scanner has not attempted to exploit this issue but has instead relied only on application's self-report...

7.5CVSS7.2AI score0.03884EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/21 2:34 p.m.33 views

CVE-2025-29927 Authorization Bypass in Next.js Middleware

Next.js is a React framework for building full-stack web applications. Starting in version 1.11.4 and prior to versions 12.3.5, 13.5.9, 14.2.25, and 15.2.3, it is possible to bypass authorization checks within a Next.js application, if the authorization check occurs in middleware. If patching to ...

9.1CVSS6.9AI score0.99621EPSS
Exploits58References5
Rows per page
Query Builder