Skip to content

Search

ESC
All tags
// Tag

Posts tagged “ssrf”

1 post

Related topics
security nextjs cve websocket

Posts

CVE-2026-44578 banner: Next.js WebSocket SSRF security advisory
30 min

CVE-2026-44578: Next.js WebSocket SSRF

High-severity (CVSS 8.6) SSRF in the Next.js WebSocket upgrade handler lets unauthenticated attackers proxy GETs to internal services on port 80.

Read
security nextjs cve ssrf websocket