Next.js Security Vulnerabilities and Issues — Next.js CVE List | Vulners.com

Lucene search

K

ZeitNext.js

2 matches found

CVE•added 2017/11/17 5:29 p.m.•77 views

CVE-2017-16877

ZEIT Next.js before 2.4.1 has directory traversal under the /_next and /static request namespace, allowing attackers to obtain sensitive information.

7.5CVSS7.4AI score0.83198EPSS

CVE•added 2018/01/24 10:29 a.m.•75 views

CVE-2018-6184

ZEIT Next.js 4 before 4.2.3 has Directory Traversal under the /_next request namespace.

7.5CVSS7.5AI score0.49051EPSS