GIGAZINE

A critical vulnerability in Next.js that has existed for several years has allowed hackers to bypass middleware-based authentication, and Vercel fixed the vulnerability on ...

A critical vulnerability has been discovered in Next.js, an open source web development framework, that could allow an attacker to bypass authentication checks. Next.js is a React framework for ...
VentureBeat

Middleware enterprise functionality comes to JavaScript, thanks to Vercel

JavaScript is widely used and well understood on servers and in web browsers to enable advanced functionality, but it hasn’t generally had middleware, until now. Well-funded web development startup ...
Infosecurity-magazine.com

NCSC Urges Users to Patch Next.js Flaw Immediately

The UK’s leading cybersecurity agency has urged users of a popular open source web development framework to patch a critical vulnerability immediately. The National Cyber Security Centre (NCSC) warned ...
Hackaday

This Week In Security: IngressNightmare, NextJS, And Leaking DNA

This week, researchers from Wiz Research released a series of vulnerabilities in the Kubernetes Ingress NGINX Controller that, when chained together, allow an unauthorized attacker to completely take ...