Critical flaw in Next.js lets hackers bypass authorization

Published on March 24, 2025

A critical severity vulnerability has been discovered in the Next.js open-source web development framework, potentially allowing attackers to bypass authorization checks. [...]