GIGAZINE

A critical vulnerability in Next.js that has existed for several years has allowed hackers to bypass middleware-based authentication, and Vercel fixed the vulnerability on ...

A critical vulnerability has been discovered in Next.js, an open source web development framework, that could allow an attacker to bypass authentication checks. Next.js is a React framework for ...
NextBigFuture

Critical React2Shell Vulnerability (CVE-2025-55182) Analysis: Surge in Attacks Targeting RSC-Enabled Services Worldwide

React2Shell (CVE-2025-55182) is a critical vulnerability affecting the most widely used React-based services across the web ecosystem. With low exploitation complexity and publicly available PoCs, ...
VietNamNet

Experts warn Vietnamese firms of critical security flaw in Next.js

A dangerous new security vulnerability - CVE-2025-55182 - has just been disclosed, with the potential to directly impact ...
TechRadar

Critical security flaw in Next.js could spell big trouble for JavaScript users

Experts have warned there is a critical severity flaw in the Next.js open source web development framework which allows threat actors to bypass authorization checks. Security researcher Rachid.A from ...