Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/01/28 12:0 a.m.4 views

PT-2026-5203

Name of the Vulnerable Software and Affected Versions Next.Js versions 0.0.0 through 1.6.3 Next.Js versions 2.0.0 through 2.0.0 Description A security issue exists in Next.Js related to a permissive cross-domain security policy with untrusted domains, which can lead to Cross-Site Scripting XSS...

6.1CVSS6AI score0.00141EPSS
Exploits0References5
NCSC
NCSC
added 2025/12/05 12:13 p.m.10 views

Vulnerabilities fixed in React Server Components

React has fixed vulnerabilities in certain versions of React Server Components specifically for versions 19.0.0, 19.1.0, 19.1.1 and 19.2.0. An unauthenticated attacker can send a rogue HTTP request to any Server Function endpoint that, when processed by React, can lead to remote code execution on...

10CVSS8.6AI score0.99562EPSS
Exploits386References5
GithubExploit
GithubExploit
added 2025/12/04 7:46 p.m.128 views

Exploit for CVE-2025-55182

CVE-2025-55182 - React RSC RCE PoC pour la vuln de deserialis...

10CVSS7AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/03 9:28 p.m.261 views

Exploit for CVE-2025-55182

CVE-2025-55182 - React Server Components RCE Exploit Python C...

10CVSS7.1AI score0.99562EPSS
Exploits372
OSV
OSV
added 2021/09/01 6:24 p.m.4 views

GHSA-9GR3-7897-PP7M XSS in Image Optimization API for Next.js

Impact - Affected: All of the following must be true to be affected - Next.js between version 10.0.0 and 11.1.0 - The next.config.js file has images.domains array assigned - The image host assigned in images.domains allows user-provided SVG - Not affected: The next.config.js file has images.loade...

7.5CVSS5.8AI score0.01139EPSS
Exploits0References6
Rows per page
Query Builder