Lucene search
K

461 matches found

vulnersOsv
vulnersOsv
added 2026/03/12 8:32 p.m.6 views

@cloudcommerce/storefront (>=0.10.0 <=0.11.0), @gspenst/next (>=0.0.1 <=0.1.2) +6 more potentially affected by CVE-2026-28793 via @tinacms/cli (>=0.60.28 <=1.12.6)

@tinacms/cli NPM version =0.60.28, =0.10.0, =0.0.1, =0.1.0, =0.0.2, =0.0.3, =0.0.1, =0.1.3 - next-tina-github-starter =0.1.0 - ramidus =1.2.1 Source cves: CVE-2026-28793 Source advisory: OSV:GHSA-2F24-MG4X-534Q...

8.4CVSS5.8AI score0.00203EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2026/03/10 4:44 p.m.2 views

CVE-2026-30942

Flare is a Next.js-based, self-hostable file sharing platform that integrates with screenshot tools. Prior to 1.7.3, an authenticated path traversal vulnerability in /api/avatars/filename allows any logged-in user to read arbitrary files from within the application container. The filename URL...

8.3CVSS5.9AI score0.00608EPSS
Exploits1References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/05 7:30 p.m.4 views

CVE-2026-3125

A Server-Side Request Forgery SSRF vulnerability was identified in the @opennextjs/cloudflare package, resulting from a path normalization bypass in the /cdn-cgi/image/ handler.The @opennextjs/cloudflare worker template includes a /cdn-cgi/image/ handler intended for development use only. In...

7.7CVSS6.1AI score0.00363EPSS
Exploits0References1
CVE
CVE
added 2026/03/04 6:14 p.m.37 views

CVE-2026-3125

CVE-2026-3125 affects the @opennextjs/cloudflare package and its /cdn-cgi/image/ handler. A path normalization bypass (using a backslash in the path, e.g., /cdn-cgi\image/…) can bypass Cloudflare edge interception, allowing requests to reach the Worker and trigger an unvalidated fetch of arbitrar...

7.7CVSS6.1AI score0.00363EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.8 views

PT-2026-23032

Name of the Vulnerable Software and Affected Versions @opennextjs/cloudflare affected versions not specified Description A Server-Side Request Forgery SSRF issue exists in the @opennextjs/cloudflare package. This is due to a path normalization bypass in the /cdn-cgi/image/ handler. Specifically,...

9.1CVSS6AI score0.00832EPSS
Exploits0References7
Packet Storm
Packet Storm
added 2026/02/09 12:0 a.m.184 views

📄 Next.js 15.2.3 Middleware Authorization Bypass

This Python script checks whether a website built with Next.js is vulnerable to CVE‑2025‑29927, a middleware authorization bypass flaw triggered by the request header:x-middleware-subrequest...

9.1CVSS5.5AI score0.99301EPSS
Exploits58
GithubExploit
GithubExploit
added 2026/02/06 5:13 a.m.168 views

Exploit for CVE-2025-66478

Vulnerable Mall Next.js Red/Blue Team Training Target Vul...

7AI score
Exploits111
CNNVD
CNNVD
added 2026/01/28 12:0 a.m.7 views

Drupal Next.js security vulnerabilities

Drupal Next.js is a module within the Drupal community that enables a deep integration between Drupal and Next.js. Versions of Drupal Next.js prior to 1.6.4 and 2.0.1 contained security vulnerabilities. These vulnerabilities were due to overly lax cross-domain security policies, which could lead ...

6.1CVSS5.6AI score0.00141EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/26 9:43 p.m.6 views

CVE-2025-59472

A denial of service vulnerability exists in Next.js versions with Partial Prerendering PPR enabled when running in minimal mode. The PPR resume endpoint accepts unauthenticated POST requests with the Next-Resume: 1 header and processes attacker-controlled postponed state data. Two closely related...

5.9CVSS5.9AI score0.00363EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/01/26 9:43 p.m.21 views

CVE-2025-59472

CVE-2025-59472 concerns Next.js with Partial Prerendering (PPR) enabled in minimal mode. The vulnerability stems from the PPR resume endpoint accepting unauthenticated POSTs (Next-Resume: 1) and processing attacker-controlled data, causing memory exhaustion via two vectors: 1) Unbounded request b...

7.5CVSS5.9AI score0.00363EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/01/26 9:43 p.m.21 views

CVE-2025-59472

A denial of service vulnerability exists in Next.js versions with Partial Prerendering PPR enabled when running in minimal mode. The PPR resume endpoint accepts unauthenticated POST requests with the Next-Resume: 1 header and processes attacker-controlled postponed state data. Two closely related...

5.9CVSS0.00363EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/01/26 6:53 p.m.322 views

Exploit for Improper Authorization in Vercel Next.Js

PoC: CVE-2025-29927 - Next.js Middleware Bypass This reposito...

9.1CVSS6AI score0.99301EPSS
Exploits58
GithubExploit
GithubExploit
added 2026/01/23 6:5 p.m.210 views

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell PoC This repository provides a minimal intentiona...

10CVSS6.6AI score0.99562EPSS
Exploits388
Veracode
Veracode
added 2026/01/13 7:31 a.m.4 views

OAuth Parameter Injection

Auth0 Next.js is vulnerable to OAuth Parameter Injection. The vulnerability is due to insufficient validation of the returnTo parameter, where attacker-controlled input can inject unintended OAuth query parameters into the authorization request, potentially resulting in tokens being issued with...

5.7CVSS7AI score0.00226EPSS
Exploits0References2Affected Software1
GithubExploit
GithubExploit
added 2026/01/01 8:14 a.m.164 views

Exploit for Deserialization of Untrusted Data in Facebook React

Affected Versions |Component|Recommended Installation Version...

10CVSS7.3AI score0.99562EPSS
Exploits388
GithubExploit
GithubExploit
added 2025/12/30 4:13 a.m.174 views

react2shell-poc-demo

!CAUTION THIS PROJECT IS USED FOR DEMONSTRATION PURPOSES O...

7AI score
Exploits0
GithubExploit
GithubExploit
added 2025/12/26 10:26 p.m.177 views

Exploit for Deserialization of Untrusted Data in Facebook React

🛠️ CVE-2025-55182-POC-NEXTJS - Simple Proof of Concept for Nex...

10CVSS8.2AI score0.99562EPSS
Exploits374
GithubExploit
GithubExploit
added 2025/12/20 12:14 a.m.189 views

Exploit for Deserialization of Untrusted Data in Facebook React

Node.js RCE Mitigation: DevOps as the Last Line of Defense Th...

10CVSS8.5AI score0.99562EPSS
Exploits374
GithubExploit
GithubExploit
added 2025/12/17 6:0 p.m.157 views

Exploit for Deserialization of Untrusted Data in Facebook React

🚨 NextRce — CVE-2025-55182 Next.js / React Server Components...

10CVSS8.2AI score0.99562EPSS
Exploits374
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/17 5:52 p.m.13 views

Security Bulletin: IBM Rhapsody Systems Engineering is using next-15.4.7.tgz which is vulnerable to CVE-2025-55182

Summary A security vulnerability was identified in the Next.js package used in IBM Rhapsody Systems Engineering. The issue is resolved by updating to a non-vulnerable patched version to ensure the continued security and reliability of the product. Vulnerability Details CVEID:CVE-2025-55182...

10CVSS7.8AI score0.99562EPSS
Exploits374Affected Software1
Rows per page
Query Builder