Next.js

Critical Next.js auth bypass vulnerability opens web apps to compromise (CVE-2025-29927)

March 24, 2025

A critical vulnerability (CVE-2025-29927) in the open source Next.js framework can be exploited by attackers to bypass authorization checks and gain unauthorized access to web …

Resources

Report: Fortune 500 employee-linked account exposure
Report: The State of Secrets Sprawl 2025
eBook: What does it take to be a full-fledged virtual CISO?
Whitepaper: Securing GenAI

Don't miss

Critical Firefox, Tor Browser sandbox escape flaw fixed (CVE-2025-2857)
Android financial threats: What businesses need to know to protect themselves and their customers
Post-quantum cryptography and the future of online safety
How to manage and protect your biometric data
UK NCSC offers security guidance for domain and DNS registrars

Next.js

Critical Next.js auth bypass vulnerability opens web apps to compromise (CVE-2025-29927)

Featured news

Resources

Don't miss