GIGAZINE

A critical vulnerability in Next.js that has existed for several years has allowed hackers to bypass middleware-based authentication, and Vercel fixed the vulnerability on ...

A critical vulnerability has been discovered in Next.js, an open source web development framework, that could allow an attacker to bypass authentication checks. Next.js is a React framework for ...
TechRadar

Critical security flaw in Next.js could spell big trouble for JavaScript users

Researchers spot critical vulnerability in Next.js If authorizations happen in middleware, they could be bypassed in older versions A patch, and a temporary workaround, are both available, so update ...