Zeit - Next.js CVE

Filtered by vendor Zeit Subscribe

Filtered by product Next.js

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-16877	1 Zeit	1 Next.js	2023-12-07	5.0 MEDIUM	7.5 HIGH
ZEIT Next.js before 2.4.1 has directory traversal under the /_next and /static request namespace, allowing attackers to obtain sensitive information.
CVE-2018-6184	1 Zeit	1 Next.js	2018-02-12	5.0 MEDIUM	7.5 HIGH
ZEIT Next.js 4 before 4.2.3 has Directory Traversal under the /_next request namespace.

Vulnerabilities (CVE)