Hacker News
- Next.js version 15.2.3 has been released to address a security vulnerability https://nextjs.org/blog/cve-2025-29927 204 comments
- CVE-2025-29927: Authorization Bypass in Next.js Middleware https://nextjs.org/blog/cve-2025-29927 42 comments reactjs
Linking pages
- Build Times - You should know this before choosing Next.js https://eduardoboucas.com/posts/2025-03-25-you-should-know-this-before-choosing-nextjs/ 188 comments
- Critical flaw in Next.js lets hackers bypass authorization https://www.bleepingcomputer.com/news/security/critical-flaw-in-nextjs-lets-hackers-bypass-authorization/ 86 comments
- Next.js and the corrupt middleware: the authorizing artifact - zhero_web_security https://zhero-web-sec.github.io/research-and-things/nextjs-and-the-corrupt-middleware 36 comments
- How to find Next.js on your network https://www.runzero.com/blog/next-js/ 1 comment
- Postmortem on Next.js Middleware bypass - Vercel https://vercel.com/blog/postmortem-on-next-js-middleware-bypass 0 comments
Linked pages
Would you like to stay up to date with Web Development? Checkout Web Development
Weekly.
Related searches:
Search whole site: site:nextjs.org
Search title: CVE-2025-29927 | Next.js
See how to search.