Matt Kapko / CyberScoop:
Researchers say a Next.js flaw that existed for several years could’ve allowed hackers to bypass middleware-based authentication; Vercel patched it on March 18 — The software defect in the widely used open-source JavaScript framework allows attackers to bypass middleware-based authorization.
Lees verder op Tech Meme