Security News > 2025 > March > Critical flaw in Next.js lets hackers bypass authorization
2025-03-24 16:15
A critical severity vulnerability has been discovered in the Next.js open-source web development framework, potentially allowing attackers to bypass authorization checks. [...]
News URL
Related news
- Critical auth bypass bug in CrushFTP now exploited in attacks (source)
- Critical FortiSwitch flaw lets hackers change admin passwords remotely (source)
- Hackers exploit WordPress plugin auth bypass hours after disclosure (source)
- ASUS warns of critical auth bypass flaw in routers using AiCloud (source)
- Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised (source)
- CISA warns of hackers targeting critical oil infrastructure (source)
- Ivanti warns of critical Neurons for ITSM auth bypass flaw (source)
- Unpatched critical bugs in Versa Concerto lead to auth bypass, RCE (source)