{"vulnerability": "CVE-2025-29927", "sightings": [{"uuid": "2fafca68-96ad-4d3a-9ac6-c5e6548f4772", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3llluhcxi542w", "content": "", "creation_timestamp": "2025-03-30T12:40:09.400406Z"}, {"uuid": "cdd55139-7bd3-4100-8597-0870167574b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/spiegel.goark.fedicity.net.ap.brid.gy/post/3lllkq5qcgme2", "content": "", "creation_timestamp": "2025-03-30T15:56:38.849590Z"}, {"uuid": "b9bc073a-7fff-4d72-827b-611664a4119a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/technews4869.bsky.social/post/3ll26c4w6zm2e", "content": "", "creation_timestamp": "2025-03-23T11:48:17.798804Z"}, {"uuid": "e66c3ddf-1fbd-48e2-8c4d-5fd184e6de07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3llp562uepu2u", "content": "", "creation_timestamp": "2025-03-31T19:54:01.687663Z"}, {"uuid": "dcafe8d2-84b9-4722-92b4-0dc5fd54a8e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uuo5os2o", "content": "", "creation_timestamp": "2025-03-22T16:35:37.653585Z"}, {"uuid": "5e61a96b-ea67-48f4-aee2-11effef13190", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://cyberplace.social/users/GossiTheDog/statuses/114211661525397352", "content": "", "creation_timestamp": "2025-03-23T12:07:55.853173Z"}, {"uuid": "9ecff79c-c492-4a72-8214-da13e7c22c8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/GossiTheDog.cyberplace.social.ap.brid.gy/post/3ll27fa27fdg2", "content": "", "creation_timestamp": "2025-03-23T12:08:14.006954Z"}, {"uuid": "a062061e-3fde-488d-a729-3b7d1923df65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/rss.y-u-e.workers.dev/post/3ll6vt6tjni24", "content": "", "creation_timestamp": "2025-03-25T09:00:09.529188Z"}, {"uuid": "2fae3534-c696-4876-88d1-59cfefe4f2ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opalsec.io/post/3ll6w6zjtss2r", "content": "", "creation_timestamp": "2025-03-25T09:06:33.458020Z"}, {"uuid": "2176a0df-e230-476b-ad47-663698a32d7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/114212060314893349", "content": "", "creation_timestamp": "2025-03-23T13:48:57.201125Z"}, {"uuid": "47203494-c9f1-4e24-af3e-c5e96a5ad3e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uvjbu22o", "content": "", "creation_timestamp": "2025-03-22T16:35:38.132743Z"}, {"uuid": "e56e1456-179d-40e5-bf79-9a5b7dc01be2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uvjers2o", "content": "", "creation_timestamp": "2025-03-22T16:35:38.639330Z"}, {"uuid": "c35fe380-7f52-468e-b359-31adb82a1967", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uvjfr22o", "content": "", "creation_timestamp": "2025-03-22T16:35:39.160381Z"}, {"uuid": "7953f985-7bba-456f-8857-895e30d5d9ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/technews4869.bsky.social/post/3ll2bgmzl3x2m", "content": "", "creation_timestamp": "2025-03-23T12:44:29.530214Z"}, {"uuid": "214ddb6e-22cd-49e1-aaa0-d0633bdade6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/jameshartig.com/post/3ll2g7oxpba2r", "content": "", "creation_timestamp": "2025-03-23T14:10:06.097185Z"}, {"uuid": "9ed55f43-db6e-4781-a93b-dbe20a2ebf80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uvjgqc2o", "content": "", "creation_timestamp": "2025-03-22T16:35:39.710807Z"}, {"uuid": "f6fa74f7-b827-4632-958b-431c5c8af38a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/youranonriots.bsky.social/post/3ll5gcogtc22n", "content": "", "creation_timestamp": "2025-03-24T18:49:46.706540Z"}, {"uuid": "88f4342b-164d-49f7-a27d-6742b8ea8619", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/lobsters-feed.bsky.social/post/3ll6wf242lh2o", "content": "", "creation_timestamp": "2025-03-25T09:10:04.887703Z"}, {"uuid": "e16aa1e3-74b7-4359-b15d-59847067b480", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uvyozc2o", "content": "", "creation_timestamp": "2025-03-22T16:35:40.210192Z"}, {"uuid": "97c514c1-7a95-4580-ab16-67d2206322fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "801d7038-4a5d-4e5f-a9ce-587755e97baa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "61265af5-6f30-49ed-9e3b-d3a17dfebf66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hdm.infosec.exchange.ap.brid.gy/post/3ll2sa3dzy6l2", "content": "", "creation_timestamp": "2025-03-23T18:09:49.107534Z"}, {"uuid": "2d4f164c-1da9-4588-af15-23d3f72478ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://s.ovalerio.net/users/dethos/statuses/114212303862858147", "content": "", "creation_timestamp": "2025-03-23T14:51:16.424175Z"}, {"uuid": "a5d8ffa9-cc7f-4254-869e-e747b98fcaf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "25fccf3b-f75f-4e39-b96e-e518e8561f7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/lirantal.com/post/3ll2kehtfmc2r", "content": "", "creation_timestamp": "2025-03-23T15:24:32.816797Z"}, {"uuid": "671de7ef-d481-4756-b12d-ca69a6d15afe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/haproxy.bsky.social/post/3ll7bsumtos2r", "content": "", "creation_timestamp": "2025-03-25T12:34:40.858562Z"}, {"uuid": "7bb8f97f-33d5-4e2d-a451-132a77273dd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lkvkd4ny2y2v", "content": "", "creation_timestamp": "2025-03-21T15:40:16.773926Z"}, {"uuid": "d6d4b2e8-b1ec-4479-b28d-9c831439cd50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ll7cae7k322y", "content": "", "creation_timestamp": "2025-03-25T12:42:13.343820Z"}, {"uuid": "41517f4e-9455-4722-8766-1646d50e0b83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/valorin.bsky.social/post/3llaio44oik2k", "content": "", "creation_timestamp": "2025-03-26T00:09:55.346431Z"}, {"uuid": "bcea8fbc-b1a9-4149-bb43-9db82b4c9020", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114201195359591645", "content": "", "creation_timestamp": "2025-03-21T15:45:51.200869Z"}, {"uuid": "7d0c3a9b-2bba-4afe-9497-7361ed780ef0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/upsun.com/post/3llbuwwmct22r", "content": "", "creation_timestamp": "2025-03-26T13:22:18.909310Z"}, {"uuid": "451a2ab2-c410-4583-985c-47a77525766c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hdm.io/post/3ll2s7xc57322", "content": "", "creation_timestamp": "2025-03-23T17:44:59.699468Z"}, {"uuid": "ae22c717-c488-418c-9014-3a6c44fd3b98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/newsyc200.bsky.social/post/3ll2ycdcbua2y", "content": "", "creation_timestamp": "2025-03-23T19:33:41.215349Z"}, {"uuid": "91bbbd94-19af-411d-949b-c6ca63ad1159", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/obivan.infosec.exchange.ap.brid.gy/post/3ll2vicutcbu2", "content": "", "creation_timestamp": "2025-03-23T19:37:29.487290Z"}, {"uuid": "36a9b4dd-8035-4a8e-83ea-01c082c6d16e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3ll4l4nabun2r", "content": "", "creation_timestamp": "2025-03-24T10:43:11.728202Z"}, {"uuid": "16b877c8-b48e-4bf4-8da0-00165784a014", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ll2yoqt5fk2j", "content": "", "creation_timestamp": "2025-03-23T19:40:37.983488Z"}, {"uuid": "f9ed2eee-2c72-48a0-923a-1f2d2a6fae71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3ll4kmov24s2h", "content": "", "creation_timestamp": "2025-03-24T10:34:22.331181Z"}, {"uuid": "604535be-f99b-4704-bcd4-a5561b568baf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kyrylo.org/post/3ll7hqwb3ic2t", "content": "", "creation_timestamp": "2025-03-25T14:20:56.451631Z"}, {"uuid": "2586c61a-e371-43ed-a234-9c9fbd635713", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/slymb.net/post/3ll2smr2ezc2q", "content": "", "creation_timestamp": "2025-03-23T17:52:09.885710Z"}, {"uuid": "44f4b807-e013-4d4d-875a-8702b2fbccfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/checkmarxzero.bsky.social/post/3llbwnyy7zo24", "content": "", "creation_timestamp": "2025-03-26T13:53:04.363707Z"}, {"uuid": "d35c8fa7-4ac7-42a9-896f-ad4ac79ee01f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114201443088481629", "content": "", "creation_timestamp": "2025-03-21T16:48:51.656726Z"}, {"uuid": "9e5f7a2a-b29c-4bdf-a34a-9c065a11f109", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/obivan/statuses/114213211788181801", "content": "", "creation_timestamp": "2025-03-23T18:41:47.251403Z"}, {"uuid": "df79ac4b-0a30-43a3-a9a7-80f4f0dbc15f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/betterhn50.e-work.xyz/post/3lkyvcivkaf2v", "content": "", "creation_timestamp": "2025-03-22T23:34:46.690168Z"}, {"uuid": "11583b76-88b9-4217-ad56-f62ac87d2990", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ll2zsjimac2t", "content": "", "creation_timestamp": "2025-03-23T20:00:38.317543Z"}, {"uuid": "5c82b47f-c88a-4f4c-8483-efda18c1b7ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3ll4lx7hx2t2j", "content": "", "creation_timestamp": "2025-03-24T10:58:02.742553Z"}, {"uuid": "7b59aa30-9a66-4c7b-adc9-4881622f39c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/neroqc.bsky.social/post/3ll5mozpo2222", "content": "", "creation_timestamp": "2025-03-24T20:44:06.951918Z"}, {"uuid": "f7b2c9c8-89cf-4129-9090-eeb30bb1c3dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/mm-hacker-news.bsky.social/post/3lkyvd23bdt2c", "content": "", "creation_timestamp": "2025-03-22T23:35:04.386483Z"}, {"uuid": "3292db83-0e90-48a6-bf1e-d0ebf51f7100", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3ll6y6ihgxx2l", "content": "", "creation_timestamp": "2025-03-25T09:42:12.694852Z"}, {"uuid": "32e3ce80-888c-4374-ad35-e1645c61404d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eternalkyu.bsky.social/post/3ll3clsu2xk2x", "content": "", "creation_timestamp": "2025-03-23T22:37:58.311174Z"}, {"uuid": "91eb6aed-1a58-4e29-b8d8-68549d312ceb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hn100.atproto.rocks/post/3lkz23bhbz52a", "content": "", "creation_timestamp": "2025-03-23T01:00:13.091730Z"}, {"uuid": "e46a292f-b757-4356-b421-c82ff81416d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/fourcube/db12eae7c7f519fd6440274cab566d58", "content": "", "creation_timestamp": "2025-03-23T22:37:38.000000Z"}, {"uuid": "3df6a8ae-2662-4afb-96ce-0f5c796d8ab0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "b39b6a8a-86a8-40e4-ba23-c4e1636aea69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llfjevkzzh2u", "content": "", "creation_timestamp": "2025-03-28T00:05:58.319223Z"}, {"uuid": "c856d015-a35a-4eda-ba12-c8386ee815d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3llan6fn3jk2x", "content": "", "creation_timestamp": "2025-03-26T01:30:37.117491Z"}, {"uuid": "29278717-daf6-424d-ac31-02671bd4feb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "d4f2d44c-1e8b-49bc-ad9f-df250307f8a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/intruder-io.bsky.social/post/3ll4m65ifzc2t", "content": "", "creation_timestamp": "2025-03-24T11:01:57.721196Z"}, {"uuid": "b5663cd2-650a-495e-aa8a-53d6011188b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hn100.bsky.social/post/3lkyrvzekx727", "content": "", "creation_timestamp": "2025-03-22T22:34:06.545940Z"}, {"uuid": "f100bd49-15e3-4800-b267-537b5749cbf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/dragonjar/statuses/114217084990047034", "content": "", "creation_timestamp": "2025-03-24T11:06:48.485033Z"}, {"uuid": "007d79f7-eac0-4231-b051-b058fa825015", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://mstdn.ca/users/rfwaveio/statuses/114219415384579994", "content": "", "creation_timestamp": "2025-03-24T20:59:30.961312Z"}, {"uuid": "44c7f99c-5f8c-4736-accb-0c0642139db5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hnws.bsky.social/post/3lkys4ihu7j2u", "content": "", "creation_timestamp": "2025-03-22T22:37:43.421601Z"}, {"uuid": "9ba5579a-6614-4231-bb85-950696009381", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/onyxia.co/post/3ll33wfxoos27", "content": "", "creation_timestamp": "2025-03-23T20:38:36.686477Z"}, {"uuid": "1d43d267-eb8b-4259-a3d4-b1996ed8bfa5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "2bc20dfd-5a60-48e3-9183-3172b5251428", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pgermishuys.bsky.social/post/3llca6c7lls27", "content": "", "creation_timestamp": "2025-03-26T16:43:14.643657Z"}, {"uuid": "410bb8c0-80ec-4f46-bf15-baa6f8d20e9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hackernewsbot.bsky.social/post/3lkysaoyden2r", "content": "", "creation_timestamp": "2025-03-22T22:40:05.342065Z"}, {"uuid": "0f3e6d5e-5779-4383-954d-5e2fff6f40e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "629c6ee8-95a0-4f8f-a96d-c60335cb604e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hnews.southla.social/post/3lkysjmcyd22b", "content": "", "creation_timestamp": "2025-03-22T22:45:04.501205Z"}, {"uuid": "aee7752e-7311-40cd-b0f4-82a0e8bad566", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/skip2networks.bsky.social/post/3ll3b5kx6ih2y", "content": "", "creation_timestamp": "2025-03-23T22:12:05.629388Z"}, {"uuid": "a0ab7ce4-953b-44c1-a762-676cdeb84085", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "d92a4462-9cba-4f0d-9c87-3388f4ee2d32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/betterhn20.e-work.xyz/post/3lkytdhtt7m2o", "content": "", "creation_timestamp": "2025-03-22T22:59:31.720949Z"}, {"uuid": "ff6d28e2-8762-41c4-bdd0-28b0e6d1baa8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hackernewstop5.bsky.social/post/3lkytewbo442w", "content": "", "creation_timestamp": "2025-03-22T23:00:20.504001Z"}, {"uuid": "90aa43a0-8e42-44dc-b168-9964c36695fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3ll4px2tob626", "content": "", "creation_timestamp": "2025-03-24T12:09:32.822838Z"}, {"uuid": "fc073764-79df-4fd4-b060-5157a2697af3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llaly4zk3j2l", "content": "", "creation_timestamp": "2025-03-26T01:09:12.582132Z"}, {"uuid": "6cdd0f62-acb1-4f7e-9c6e-a8f2922347b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/msittechnews.bsky.social/post/3llesq7dwln2b", "content": "", "creation_timestamp": "2025-03-27T17:20:42.648015Z"}, {"uuid": "a2055c8a-153e-428f-acbe-905f459bb430", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llas6mqmmb2u", "content": "", "creation_timestamp": "2025-03-26T03:00:12.996072Z"}, {"uuid": "821382bd-b7a0-4808-966d-11bf2504cfcd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3llddzph5s224", "content": "", "creation_timestamp": "2025-03-27T03:24:56.940302Z"}, {"uuid": "577f099e-0941-49d4-9ec0-c5697b2c759e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hdm.io/post/3lkz7syypit2v", "content": "", "creation_timestamp": "2025-03-23T02:42:58.003052Z"}, {"uuid": "0e11883a-8d29-4bfb-a494-919c07f85a11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hdm.infosec.exchange.ap.brid.gy/post/3lkz7t3cor572", "content": "", "creation_timestamp": "2025-03-23T02:47:26.394271Z"}, {"uuid": "a56981e2-79b2-4eb7-82f1-9e86dfa85d94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/5h0ckrat3s.bsky.social/post/3ll5syxjio225", "content": "", "creation_timestamp": "2025-03-24T22:36:58.292184Z"}, {"uuid": "365b2923-c119-4778-86e1-fe4eb6a10365", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "ff06d062-a3f6-43a1-962a-a6aad938da07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3ll4t25nbas2r", "content": "", "creation_timestamp": "2025-03-24T13:05:02.140488Z"}, {"uuid": "af8027ab-0549-4bf3-aea4-b5cfd4e78836", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/azu.bsky.social/post/3lkzu22v5jg2l", "content": "", "creation_timestamp": "2025-03-23T08:44:49.248178Z"}, {"uuid": "27f7578d-3155-4649-9a6b-66c9f2913ead", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3ll4t26kons2r", "content": "", "creation_timestamp": "2025-03-24T13:05:02.648923Z"}, {"uuid": "c147889a-6e31-472e-8078-d4868e256e06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "3ca5f3a0-3070-4cfc-80de-f06553b60567", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/feedbot.unronritaro.net/post/3ll5v36pg5e2b", "content": "", "creation_timestamp": "2025-03-24T23:13:59.955050Z"}, {"uuid": "37a7fa11-07e7-4086-9510-299c3f95a56e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/securestep9.bsky.social/post/3ll5vdc246k23", "content": "", "creation_timestamp": "2025-03-24T23:18:34.081359Z"}, {"uuid": "23af47e7-0a28-4431-8ee3-f946b5a957f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llcgz76gpz25", "content": "", "creation_timestamp": "2025-03-26T18:45:39.068042Z"}, {"uuid": "a15a85fb-55b3-466d-aff9-3db388c7b05c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pradumnasaraf.dev/post/3lldq7yisu22z", "content": "", "creation_timestamp": "2025-03-27T07:03:16.626901Z"}, {"uuid": "72dfaf33-d1fc-40de-abe5-ccf66d98277a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pradumnasaraf.dev/post/3lldqa3z6kk2z", "content": "", "creation_timestamp": "2025-03-27T07:03:17.164642Z"}, {"uuid": "68ea9ea0-e86b-41a4-a9b6-24243d4ed5d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ll3s6ppqh22e", "content": "", "creation_timestamp": "2025-03-24T03:16:58.217632Z"}, {"uuid": "d601791b-a261-4279-be42-571d9d88104b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/stux.mstdn.social.ap.brid.gy/post/3ll4tkhp7xq72", "content": "", "creation_timestamp": "2025-03-24T13:14:15.670896Z"}, {"uuid": "68d1715a-eafe-49d6-a91d-d45139b41c32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/helpnetsecurity.com/post/3ll4tv6tj7k2r", "content": "", "creation_timestamp": "2025-03-24T13:20:08.397130Z"}, {"uuid": "5442e368-9fec-42e8-88b7-679910cae2b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "88310d8b-6ce8-4218-baf1-0f1c4acfefc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kgmogane.bsky.social/post/3lkzqpbxbr22o", "content": "", "creation_timestamp": "2025-03-23T07:45:09.674623Z"}, {"uuid": "64eda3d3-df37-403c-9c2f-29f3ec9e68ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/technofeed.bsky.social/post/3ll5t7verrx26", "content": "", "creation_timestamp": "2025-03-24T22:40:50.156443Z"}, {"uuid": "00f50c84-f826-4c53-853e-113e905bfa4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/catc0n.bsky.social/post/3ll7pxaqzck2c", "content": "", "creation_timestamp": "2025-03-25T16:47:39.878977Z"}, {"uuid": "43cb1c2a-ad64-4e82-ae5c-65409d0f73cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/netalexx.bsky.social/post/3lkzt7xlkjs2g", "content": "", "creation_timestamp": "2025-03-23T08:30:15.975978Z"}, {"uuid": "56e33a72-dcb9-4cb1-932b-fedcceb6bd01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ll4rnw7exc25", "content": "", "creation_timestamp": "2025-03-24T12:40:13.919731Z"}, {"uuid": "0aad30c6-b38e-4f98-9ad5-42d4c654c0f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3ll5yfbmaz72x", "content": "", "creation_timestamp": "2025-03-25T00:36:24.810593Z"}, {"uuid": "257334c4-882c-4397-adb7-0b6be77589aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/azu.bsky.social/post/3lkztqy6c5l2e", "content": "", "creation_timestamp": "2025-03-23T08:39:44.511145Z"}, {"uuid": "e4e7c96b-0bce-40d2-90d6-bbea0623999a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/johnhammond.bsky.social/post/3ll4ss3wlhy2k", "content": "", "creation_timestamp": "2025-03-24T13:00:27.890521Z"}, {"uuid": "09d97451-20be-47e3-9d19-31819c73afdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "c9101c00-5d11-492c-b1f1-ada67593987d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/OpenSource.activitypub.awakari.com.ap.brid.gy/post/3ll4uhlgx6f72", "content": "", "creation_timestamp": "2025-03-24T13:30:45.220709Z"}, {"uuid": "730b3f5c-1819-4a86-937e-c8f282134ad5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/Android.activitypub.awakari.com.ap.brid.gy/post/3ll42nnrgjeb2", "content": "", "creation_timestamp": "2025-03-24T05:54:53.424571Z"}, {"uuid": "7aadbc64-1037-4bbe-98cd-9b8fe91f8a4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "e70aef41-cc31-4ca7-a440-5e4a2a8e3dbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/fourcube/45a78b23fb317b0af3d61f0f52314370", "content": "", "creation_timestamp": "2025-03-24T07:55:39.000000Z"}, {"uuid": "eafa665c-276c-4e02-89eb-b3aca57a8614", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "3e8362fd-77c2-4bd5-9124-ef2bdb5490b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://thehackernews.com/2025/03/critical-nextjs-vulnerability-allows.html", "content": "", "creation_timestamp": "2025-03-24T08:17:00.000000Z"}, {"uuid": "67f4cb4d-a824-42bc-8d16-3df2fc480830", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "4c48169e-a5a4-43aa-a938-462ff9b18498", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/a9v8i/916593b2cb8582a94190ac4982bce804", "content": "", "creation_timestamp": "2025-03-24T14:11:24.000000Z"}, {"uuid": "84db6e9d-9ce2-4e92-a6eb-f0ba68480162", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "3d5840d1-6662-4014-8a30-d7c791694874", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://projectdiscovery.io/blog/nextjs-middleware-authorization-bypass", "content": "", "creation_timestamp": "2025-03-24T14:14:34.468558Z"}, {"uuid": "9d06b05d-1d60-4ce3-bcec-78f82fb6d993", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/weeklybrew.dev/post/3llb4bxdmxq22", "content": "", "creation_timestamp": "2025-03-26T06:01:02.000212Z"}, {"uuid": "3bdc67bf-d70c-48ff-b82f-47ac8d5bd2ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llcinn35nc2b", "content": "", "creation_timestamp": "2025-03-26T19:14:58.699588Z"}, {"uuid": "bce6dd3c-ceda-4d23-adf6-e09f85380c72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/yacinekharoubi.bsky.social/post/3ll3xuiacpc2k", "content": "", "creation_timestamp": "2025-03-24T04:58:36.642446Z"}, {"uuid": "8830e763-054f-412b-9d9c-2e93f6d55e8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/jflh.bsky.social/post/3ll7usnwhoc2z", "content": "", "creation_timestamp": "2025-03-25T18:14:35.000771Z"}, {"uuid": "a53bdd6b-ec96-4545-9c49-a8e9f2365533", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/yacinekharoubi.bsky.social/post/3ll3y436cbs2k", "content": "", "creation_timestamp": "2025-03-24T05:02:51.772999Z"}, {"uuid": "304f3463-c85a-4a93-9b0d-a73538add1bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://gist.github.com/ricardojba/86eaf1c5da9467c9670aeaf5913f9145", "content": "", "creation_timestamp": "2025-03-25T18:27:01.000000Z"}, {"uuid": "a907c56d-77d3-41a4-afe0-1c5e5cc0681e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "c71d9e90-f4bf-4ed8-91fa-fd4dc2a6bc66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/mosesrenegade.bsky.social/post/3ll4bz4gcen2s", "content": "", "creation_timestamp": "2025-03-24T08:00:09.244117Z"}, {"uuid": "077eeaf6-c617-461d-bdf7-394ae6231ed3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eternalkyu.bsky.social/post/3ll4cmfgyos2x", "content": "", "creation_timestamp": "2025-03-24T08:10:58.469886Z"}, {"uuid": "715985c4-115a-4ac3-be4e-c45482424849", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "c118a454-6f6e-4049-b5e3-525a0e998433", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/modat-io.bsky.social/post/3ll53caxask26", "content": "", "creation_timestamp": "2025-03-24T15:32:44.487741Z"}, {"uuid": "6b980ea4-39e2-4304-8e82-4b0d25119f0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/buzzleaktv.bsky.social/post/3ll53okymab2n", "content": "", "creation_timestamp": "2025-03-24T15:39:33.508300Z"}, {"uuid": "fc631790-7dd6-493d-86ed-6a47f249a5ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3ll4fawzng62k", "content": "", "creation_timestamp": "2025-03-24T08:58:13.166406Z"}, {"uuid": "e0f85804-e68c-490b-b715-c88048320e79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/mdiqbalahmad/bd656f21569c0df0cd7ee6a6f2ba2ad7", "content": "", "creation_timestamp": "2025-03-25T19:33:01.000000Z"}, {"uuid": "89465776-c035-4258-aca6-ca7c6e0607ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/rajsamani.bsky.social/post/3llb7oe44fc2k", "content": "", "creation_timestamp": "2025-03-26T07:01:41.034422Z"}, {"uuid": "77079ec2-396d-4981-9efc-503ed26eb91c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/Android.activitypub.awakari.com.ap.brid.gy/post/3ll6nyufedh22", "content": "", "creation_timestamp": "2025-03-25T06:43:05.566132Z"}, {"uuid": "55390dc5-a5bc-4eac-a724-32c77d9d46b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "112e7a36-d5cd-4989-969a-72ed16e65fd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/defendopsdiaries.bsky.social/post/3ll56ajggw72l", "content": "", "creation_timestamp": "2025-03-24T16:25:23.100239Z"}, {"uuid": "f3c3d786-3026-46fb-a22b-6043417ae6d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kdm.pw/post/3ll4gchl4fk2j", "content": "", "creation_timestamp": "2025-03-24T09:17:05.819539Z"}, {"uuid": "ce6fb01c-c19e-41d2-a774-d64e4918db07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kdm.pw/post/3ll4gd6uhxk2j", "content": "", "creation_timestamp": "2025-03-24T09:17:26.673179Z"}, {"uuid": "2c068406-f84d-453b-a551-8a90430e5734", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/ishowcybersecurity.bsky.social/post/3ll53wvado22z", "content": "", "creation_timestamp": "2025-03-24T15:44:12.160227Z"}, {"uuid": "82fa80cf-07e3-4209-9a58-c18b54dc19b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kdm.pw/post/3ll4gdr2muk2j", "content": "", "creation_timestamp": "2025-03-24T09:17:45.782190Z"}, {"uuid": "ecf47fac-84cb-4afe-9a07-1cc1c451447f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3lleweshmqt2c", "content": "", "creation_timestamp": "2025-03-27T18:25:54.634339Z"}, {"uuid": "6828b66a-caa5-4357-9ccd-7875d2598f00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3ll6rhwwart26", "content": "", "creation_timestamp": "2025-03-25T07:42:12.252815Z"}, {"uuid": "d5d24125-7085-4807-8a7e-8939a23795ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ll4hgrsrc5o2", "content": "", "creation_timestamp": "2025-03-24T09:38:20.417068Z"}, {"uuid": "eab62c30-d24e-4175-ba5f-d23d248ae638", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/infernovm.bsky.social/post/3lla3bwmyb52q", "content": "", "creation_timestamp": "2025-03-25T20:10:27.840593Z"}, {"uuid": "3a91e81b-1b89-4340-a02e-fc4d5524dbda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3llerfqeqsc2x", "content": "", "creation_timestamp": "2025-03-27T16:56:56.935140Z"}, {"uuid": "656df8ad-d2a7-475f-bd7b-4284e9e35b6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/emadshanab/e12542deb6e3eccf76b4a5735f1bb487", "content": "", "creation_timestamp": "2025-03-26T08:57:03.000000Z"}, {"uuid": "db6974ed-36c2-4c1e-8796-0938c55c4487", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3ll57wmnhre2w", "content": "", "creation_timestamp": "2025-03-24T16:55:38.516338Z"}, {"uuid": "046780d2-4ae7-426e-a368-99610ee226d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/binayakbartaula.bsky.social/post/3ll5bfxthac2k", "content": "", "creation_timestamp": "2025-03-24T17:22:14.895957Z"}, {"uuid": "f0f86dcf-d2ab-40c8-8227-de75fb45ea7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "8c304558-03b7-4af0-9a32-8ecddd5d7659", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "12040967-c3cd-47ea-a000-99bc459a0d97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "9c8e3ec2-9c58-4b77-9c5d-f55a118331f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3llbnrei2gn2q", "content": "", "creation_timestamp": "2025-03-26T11:13:53.382759Z"}, {"uuid": "3966d01c-9af7-46bc-888b-42232df2149c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://threatintel.cc/2025/03/24/critical-nextjs-vulnerability-allows-attackers.html", "content": "", "creation_timestamp": "2025-03-24T10:35:09.000000Z"}, {"uuid": "f9f4df47-57be-45ae-a3d5-cee646616dbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/evilmaid.bsky.social/post/3ll5asc7vwy2i", "content": "", "creation_timestamp": "2025-03-24T17:11:07.589586Z"}, {"uuid": "6e9fd0cd-20a8-43af-8dd5-9733760518b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/npub1jxl2tnvnv9gycsy64aze295c3a529lx5sfmzlktf5lxuw805g5wqew0z0n.momostr.pink.ap.brid.gy/post/3llbq7dg5q4t2", "content": "", "creation_timestamp": "2025-03-26T11:58:58.858695Z"}, {"uuid": "7805ce34-8a44-4806-a320-d316337096a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/technews4869.bsky.social/post/3ll22adi7xb2x", "content": "", "creation_timestamp": "2025-03-23T10:35:42.522238Z"}, {"uuid": "5098743d-34a5-43c5-bc24-5bfc2724cf6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3ll736e7qkc2x", "content": "", "creation_timestamp": "2025-03-25T10:35:48.941714Z"}, {"uuid": "cf43dc6c-b068-4526-8126-e6bcb87ae8b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "00aa3297-ccea-4010-be11-243524f02056", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3ll5dwvgbqx27", "content": "", "creation_timestamp": "2025-03-24T18:07:21.868601Z"}, {"uuid": "514b63f1-27bb-4e00-b749-37580945f4fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3lls54n2twl2u", "content": "", "creation_timestamp": "2025-04-02T00:31:12.871161Z"}, {"uuid": "2878f1f4-8dc2-4d4a-8940-1259a44b9ba6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/tech-trending.bsky.social/post/3ll25kgjlwm2w", "content": "", "creation_timestamp": "2025-03-23T11:35:02.161365Z"}, {"uuid": "da34c31a-b274-4349-946a-72a72dd6e5c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3llcpycosd22m", "content": "", "creation_timestamp": "2025-03-26T21:26:21.770823Z"}, {"uuid": "e3b342c1-59a3-42cf-9683-36024e1fb322", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3llgh4qtp2i2e", "content": "", "creation_timestamp": "2025-03-28T08:58:18.130277Z"}, {"uuid": "acd0f991-dd27-457a-96b0-ff82280329fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3llgilpl73f2g", "content": "", "creation_timestamp": "2025-03-28T09:24:32.961499Z"}, {"uuid": "7dad5586-7d63-4388-b647-9e8bdcb8a0c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/netcodex.bsky.social/post/3llh2cvruy22f", "content": "", "creation_timestamp": "2025-03-28T14:41:49.240225Z"}, {"uuid": "76c98fda-b7ad-43a6-a862-54f6ab00f655", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3llsfpbyjo22x", "content": "", "creation_timestamp": "2025-04-02T03:04:48.879346Z"}, {"uuid": "f1d4b9b7-c303-4ebd-a0fe-f6e8781e352b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3ll726rgzcc2g", "content": "", "creation_timestamp": "2025-03-25T10:18:09.471337Z"}, {"uuid": "7bef78d8-977f-46d7-a233-e13311dc4ce3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3llh4n4m4fs2x", "content": "", "creation_timestamp": "2025-03-28T15:23:15.375836Z"}, {"uuid": "2c6ab21a-dd56-4186-b111-9dbc43be870f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/buzzleaktv.bsky.social/post/3llh6f246qg2v", "content": "", "creation_timestamp": "2025-03-28T15:54:32.163564Z"}, {"uuid": "972d5aca-61e6-4ee0-b558-e6cb6966a68a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberresearch.bsky.social/post/3llhfzk6jxq2e", "content": "", "creation_timestamp": "2025-03-28T18:11:16.462851Z"}, {"uuid": "141a8f8f-2171-4718-9afa-dd8ca89d903a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llhlrxf7jw25", "content": "", "creation_timestamp": "2025-03-28T19:54:23.571565Z"}, {"uuid": "73ec5a90-6cdc-4718-9fa3-3643e84b593d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.bsky.social/post/3ll73443q422v", "content": "", "creation_timestamp": "2025-03-25T10:34:36.235555Z"}, {"uuid": "5ade83cf-e999-47a2-9f01-0722d52bc750", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llhnjzkyiy2b", "content": "", "creation_timestamp": "2025-03-28T20:25:44.846486Z"}, {"uuid": "ef2a08a6-ab15-4cc5-bf82-2b492c6fa1be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kushelmex.com/post/3llhr3km4sk2r", "content": "", "creation_timestamp": "2025-03-28T21:29:19.087285Z"}, {"uuid": "bb3c2eda-3fab-4fc1-945d-0d4ee9676306", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3llk7zvsn472f", "content": "", "creation_timestamp": "2025-03-29T21:02:08.634687Z"}, {"uuid": "7101247e-0d4d-4034-b4d5-dcecfd9f0876", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lltbyb224k2x", "content": "", "creation_timestamp": "2025-04-02T11:30:54.894597Z"}, {"uuid": "28d3f52f-a4d7-4a2a-8c63-da2bfda30245", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/ai-news.at.thenote.app/post/3lltcez2ax22x", "content": "", "creation_timestamp": "2025-04-02T11:38:02.365640Z"}, {"uuid": "d626fc60-c011-4152-b43c-3635578818b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/njccic.bsky.social/post/3llrdodww722a", "content": "", "creation_timestamp": "2025-04-01T16:55:53.347443Z"}, {"uuid": "fb74372f-3625-402d-a837-f329a05e1e11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/azureweekly.endj.in/post/3llw3mwtstf24", "content": "", "creation_timestamp": "2025-04-03T14:15:11.841460Z"}, {"uuid": "5a71dd2b-e121-4192-ab66-e77bd932241b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/tech-trending.bsky.social/post/3lll4rgcq7u2a", "content": "", "creation_timestamp": "2025-03-30T05:36:19.862393Z"}, {"uuid": "753fe3d0-b40a-4337-b181-aca22f115c54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/ai-ru.at.thenote.app/post/3llxl76hwbk2x", "content": "", "creation_timestamp": "2025-04-04T04:26:29.559252Z"}, {"uuid": "28ee2ee4-aa17-4a7e-9a3d-8115360a52c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114270672120502866", "content": "", "creation_timestamp": "2025-04-02T22:14:42.800797Z"}, {"uuid": "0f56ff2f-d7b1-4414-abe1-83c0263a2cfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114270672120502866", "content": "", "creation_timestamp": "2025-04-02T22:14:42.798515Z"}, {"uuid": "0d611279-ab9b-481b-a1c7-582ef1db5271", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lluikvzlgw2h", "content": "", "creation_timestamp": "2025-04-02T23:01:31.778691Z"}, {"uuid": "4dff4c63-9e9f-4437-a81d-7038369348c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3lmb7ilpyaa2a", "content": "", "creation_timestamp": "2025-04-08T00:23:37.889644Z"}, {"uuid": "6322e6fb-8f30-4f11-8223-adf38daa747a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3lm34542gqe2e", "content": "", "creation_timestamp": "2025-04-05T14:07:32.955202Z"}, {"uuid": "65c94601-fdf8-48a1-b6c8-af2e19240e35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lm5qmwxidpf2", "content": "", "creation_timestamp": "2025-04-06T15:20:26.957424Z"}, {"uuid": "84b442aa-f305-41ce-b357-8796a898fb4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/securitycipher.bsky.social/post/3lmqvua3lat2x", "content": "", "creation_timestamp": "2025-04-14T06:13:47.622637Z"}, {"uuid": "e487d5dc-35d9-4e8e-931a-ccc0b2a96180", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/youranonriots.bsky.social/post/3lmdvd5sq622c", "content": "", "creation_timestamp": "2025-04-09T01:59:40.634228Z"}, {"uuid": "a8aefb55-b2a3-4a04-88ca-b0e85c9e9ea4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3lmcqemguqp2z", "content": "", "creation_timestamp": "2025-04-08T14:58:17.700166Z"}, {"uuid": "ccd71cf1-534e-40a5-bddb-f24233ccd5db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/securitycipher.bsky.social/post/3lne6i3omyt2e", "content": "", "creation_timestamp": "2025-04-21T22:08:37.991613Z"}, {"uuid": "905cb51e-4f89-40de-b54e-edea17a302eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "exploited", "source": "https://gist.github.com/drfuzzyness/483a6222131a72c3cb36595658f8c610", "content": "", "creation_timestamp": "2025-04-05T18:05:21.000000Z"}, {"uuid": "dfc43d6b-37ff-4173-b235-967b49205346", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://gist.github.com/rudSarkar/0a7502eec392872351882898903bff6b", "content": "", "creation_timestamp": "2025-03-27T10:43:26.000000Z"}, {"uuid": "3f8b4764-9d68-461b-86be-152682bdd108", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/bdeshi/310c9b077579c06bd20542bd96cba78c", "content": "", "creation_timestamp": "2025-04-15T19:56:15.000000Z"}, {"uuid": "d59a3206-5825-4f7b-bdf2-bd84b59509dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ln2wfozcequ2", "content": "", "creation_timestamp": "2025-04-18T05:51:38.583685Z"}, {"uuid": "405b92de-fdf3-47be-8080-d3b57d684737", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lqisoqoqcu25", "content": "", "creation_timestamp": "2025-05-31T22:36:30.130214Z"}, {"uuid": "1e317254-9e26-4448-ae7f-01a1e2c3f70f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/finnjohn3344.bsky.social/post/3lnn3n5m3vs2c", "content": "", "creation_timestamp": "2025-04-25T11:11:52.345588Z"}, {"uuid": "65a80791-555f-4240-9876-2be7047b1d78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/and0x00/38fd282e67b521a4c2f35ead11c91fa7", "content": "", "creation_timestamp": "2025-07-07T00:49:33.000000Z"}, {"uuid": "13440a33-e8e6-4082-a71d-445fa6da3943", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/u2k25.bsky.social/post/3lofijyr3pc2l", "content": "", "creation_timestamp": "2025-05-05T04:06:32.400825Z"}, {"uuid": "c24cbb50-29ea-439b-b4cb-2020f8f19132", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/bilaltariq01.bsky.social/post/3lr7zjs6jxj2e", "content": "", "creation_timestamp": "2025-06-10T04:10:15.033243Z"}, {"uuid": "11ef92fb-b850-464e-a0c9-14714beffc64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/ytroncal.bsky.social/post/3lrpjdr4o6k2z", "content": "", "creation_timestamp": "2025-06-16T08:03:09.344705Z"}, {"uuid": "4bb6a8fc-02aa-4bbc-8556-922340639558", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/wardenshield.bsky.social/post/3lvc7krx2sk26", "content": "", "creation_timestamp": "2025-07-31T22:44:24.322908Z"}, {"uuid": "0724d80c-a085-4d07-af35-d422ddf5cd24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/wardenshield.bsky.social/post/3lp3nrt3fl22f", "content": "", "creation_timestamp": "2025-05-13T23:39:02.899940Z"}, {"uuid": "67c51ddc-e909-49a2-a9a2-39f46acbe029", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/ytroncal.bsky.social/post/3lradjzru6c2q", "content": "", "creation_timestamp": "2025-06-10T07:09:22.845434Z"}, {"uuid": "8d15eb5c-45e1-4cbc-8a93-3a3f89d2c576", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3lpoyrtsu532u", "content": "", "creation_timestamp": "2025-05-21T16:16:23.259086Z"}, {"uuid": "8e127422-ed0c-4d8c-b4a7-6397870203de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/crowdsec.bsky.social/post/3lvl4u4wl4k22", "content": "", "creation_timestamp": "2025-08-04T11:49:52.788945Z"}, {"uuid": "34b4cdfa-ea5c-4ba7-982c-c1f2fc354e04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/darkwebinformer.com/post/3lz2ancfbt224", "content": "", "creation_timestamp": "2025-09-17T16:23:00.385900Z"}, {"uuid": "049a2597-0692-49b4-92e0-6b6b2f15ce4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hackinghub.bsky.social/post/3m4vd5ol6xm2c", "content": "", "creation_timestamp": "2025-11-05T15:05:28.051522Z"}, {"uuid": "d2a403be-6cd8-44d8-b571-3297b4985236", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/Darkcrai86/177a0e2159bfad206d01023dab5d1dea", "content": "", "creation_timestamp": "2025-09-19T08:34:28.000000Z"}, {"uuid": "52d43bf2-2927-46d3-a376-04295fee347c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3lwwbx6hqd527", "content": "", "creation_timestamp": "2025-08-21T15:45:25.382746Z"}, {"uuid": "b1305eb1-9658-44f1-8de2-5e2b4fa3df24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/lost-rob0t/d0b5e9fa379d7b29d0fc05a3a3c8601d", "content": "", "creation_timestamp": "2025-08-27T22:27:38.000000Z"}, {"uuid": "e0056e3f-e219-4ab0-b7f5-f2f94058c5c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3m5ho5lnjzh2r", "content": "", "creation_timestamp": "2025-11-12T22:10:10.670828Z"}, {"uuid": "ccc9907f-c758-44a4-82da-50403836aa8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/u2k25.bsky.social/post/3lxuklswa722j", "content": "", "creation_timestamp": "2025-09-02T16:40:00.879251Z"}, {"uuid": "0857a048-a732-459a-81ac-55bff6760979", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/securitycipher.bsky.social/post/3lyxwcnyrsa2k", "content": "", "creation_timestamp": "2025-09-16T18:12:48.498005Z"}, {"uuid": "a103e4d4-dde9-41bd-9fb9-b6acbd76fffa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lxrpuip7h22o", "content": "", "creation_timestamp": "2025-09-01T13:36:26.020028Z"}, {"uuid": "b0d55a9b-fc8e-477a-ba9d-48e711c56dfb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3lxs2khfnmk2k", "content": "", "creation_timestamp": "2025-09-01T16:47:39.937252Z"}, {"uuid": "652b6648-1ab0-4826-9a4d-052abb120cef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/packetstorm.bsky.social/post/3lxs4rncn4m2h", "content": "", "creation_timestamp": "2025-09-01T17:27:23.597925Z"}, {"uuid": "db71a9c1-1a2c-41d4-a163-9c53b54515da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "e92402ac-b04a-4e73-ad0b-3c8344ca18bd", "vulnerability": "CVE-2025-29927", "type": "exploited", "source": "https://beelzebub.ai/blog/threat-huntinga-analysis-of-a-nextjs-exploit-campaign/", "content": "", "creation_timestamp": "2025-12-15T14:05:41.822870Z"}, {"uuid": "2b802c21-dac3-427e-b16c-7fe5bd6ce218", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3ly25y33zni2j", "content": "", "creation_timestamp": "2025-09-04T22:10:11.058809Z"}, {"uuid": "0b7b08bf-9a64-4dcb-b79a-65a286f4ae73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ly2bceeudo72", "content": "", "creation_timestamp": "2025-09-04T23:09:42.293496Z"}, {"uuid": "df9e8320-dc4b-4d0f-a2a4-3a277e774715", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "e92402ac-b04a-4e73-ad0b-3c8344ca18bd", "vulnerability": "CVE-2025-29927", "type": "exploited", "source": "https://securitylabs.datadoghq.com/articles/nextjs-middleware-auth-bypass", "content": "", "creation_timestamp": "2025-12-15T14:29:13.422878Z"}, {"uuid": "310d39dc-5231-455a-b26d-6432d8674f1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3majwhzntdz2y", "content": "", "creation_timestamp": "2025-12-22T00:00:05.274917Z"}, {"uuid": "a170af3f-98f9-4dc3-9fff-ed705c167970", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mfkf3b3a3c2x", "content": "", "creation_timestamp": "2026-02-23T19:27:21.114200Z"}, {"uuid": "d74f56fb-fd8c-47fb-8249-1ec87a3f33e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3marfvlm6uc26", "content": "", "creation_timestamp": "2025-12-24T23:24:48.393558Z"}, {"uuid": "7c57011f-6bbf-4bf5-95b1-0a21da519662", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pvynckier.bsky.social/post/3mblh2fngsk2z", "content": "", "creation_timestamp": "2026-01-04T07:54:37.038026Z"}, {"uuid": "03065abd-1f73-48f8-9af0-b6b8c158c1f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-e40d4570-989b88cdb94f7d04", "content": "", "creation_timestamp": "2025-12-24T13:07:58.944767Z"}, {"uuid": "f276bbb5-31d2-4841-b7dd-fa5f400eecb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mi7owupo642a", "content": "", "creation_timestamp": "2026-03-29T17:40:09.656876Z"}, {"uuid": "fdb4e0b8-5b71-485e-95f2-cc2241b77fc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/0xdf.bsky.social/post/3mc3bn6ehd32y", "content": "", "creation_timestamp": "2026-01-10T15:00:16.865367Z"}, {"uuid": "351e1baa-7c07-4015-b4b9-03399b96d0d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mc4i2q7v3x24", "content": "", "creation_timestamp": "2026-01-11T02:27:54.237857Z"}, {"uuid": "09ceabb6-1d35-4dd8-8292-893be78f3416", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://gist.github.com/alon710/f6346201ec0b07a53cc81987f242c93c", "content": "", "creation_timestamp": "2026-01-24T22:41:12.000000Z"}, {"uuid": "b04e622f-dfdb-4b8c-8b06-ba6fc4664740", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://gist.github.com/alon710/269acc1fe598702f002e03ddebce0469", "content": "", "creation_timestamp": "2026-01-24T21:25:47.000000Z"}, {"uuid": "3ab1e708-3f02-46ac-a9cb-6ec565d47994", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/Master_X_Cha/6169", "content": "-\n\u0641\u064a\u0647 \u0628\u0627\u062d\u062b\u064a\u0646 \u0623\u0645\u0646\u064a\u064a\u0646 (\u0631\u0634\u064a\u062f \u0648\u064a\u0627\u0633\u0631 \u0639\u0644\u0627\u0645) \u0627\u0643\u062a\u0634\u0641\u0648\u0627 \u062b\u063a\u0631\u0629 \u062e\u0637\u064a\u0631\u0629 \u0641\u064a \u0627\u0644\u0640 Middleware \u0628\u062a\u0627\u0639 Next.js \u2014 \u0648\u0627\u0644\u0644\u064a \u0647\u0648 \u0627\u0644\u0643\u0648\u062f \u0627\u0644\u0644\u064a \u0628\u064a\u062a\u0646\u0641\u0630 \u0642\u0628\u0644 \u0645\u0627 \u0627\u0644\u0637\u0644\u0628 \u064a\u0648\u0635\u0644 \u0644\u0644\u0640 API \u0623\u0648 \u0627\u0644\u0635\u0641\u062d\u0629\u060c \u0648\u0628\u064a\u0633\u062a\u062e\u062f\u0645\u0648\u0647 \u0645\u062b\u0644\u064b\u0627 \u0641\u064a \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0627\u0644\u0635\u0644\u0627\u062d\u064a\u0627\u062a.\n\n \u0627\u0644\u062b\u063a\u0631\u0629 \u0643\u0627\u0646\u062a \u0628\u0628\u0633\u0627\u0637\u0629 \u0625\u0646\u0643 \u0644\u0648 \u0636\u0641\u062a \u0647\u064a\u062f\u0631 \u0645\u0639\u064a\u0646 \u0641\u064a \u0627\u0644\u0637\u0644\u0628 (x-middleware-subrequest) \u0648\u0643\u062a\u0628\u062a \u0641\u064a\u0647 \u0627\u0633\u0645 \u0627\u0644\u0640 Middleware... \u0627\u0644\u0643\u0648\u062f \u0628\u064a\u062a\u062c\u0647\u0644 \u0627\u0644\u0637\u0644\u0628 \u062a\u0645\u0627\u0645\u064b\u0627 \u0648\u0628\u064a\u0639\u062f\u064a\u0647 \u0643\u0623\u0646 \u0645\u0641\u064a\u0634 \u0623\u064a \u062a\u062d\u0642\u0642 \u0623\u0635\u0644\u0627\u064b!\n\u064a\u0639\u0646\u064a \u062a\u0642\u062f\u0631 \u062a\u0639\u062f\u064a \u0639\u0644\u0649 \u0627\u0644\u0640 Auth\u060c \u062a\u0648\u0635\u0644 \u0644\u0635\u0641\u062d\u0627\u062a \u0645\u062d\u0645\u064a\u0629\u060c \u0623\u0648 \u062d\u062a\u0649 \u062a\u0639\u0645\u0644 XSS \u0623\u0648 \u062a\u062e\u0631\u0628 \u0627\u0644\u0643\u0627\u0634 \u0628\u062a\u0627\u0639 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0648  \u0627\u0644\u062e\u0637\u064a\u0631 \u0625\u0646 \u0643\u0644 \u062f\u0647 \u0628\u064a\u062d\u0635\u0644 \u0645\u0646 \u063a\u064a\u0631 \u0645\u0627 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u064a\u062d\u0633 \u0628\u0623\u064a \u062d\u0627\u062c\u0629 \u063a\u0644\u0637.\n\n\u0627\u0644\u062b\u063a\u0631\u0629 \u062f\u064a \u0627\u062a\u0633\u062c\u0644\u062a \u0628\u0640 CVE-2025-29927\n\u0648\u0646\u0635\u064a\u062d\u0629 \u0644\u0623\u064a \u062d\u062f \u0634\u063a\u0627\u0644 \u0628\u0640 Next.js \u062d\u062f\u0651\u062b \u0644\u0644\u0646\u0633\u062e\u0629 \u0627\u0644\u062c\u062f\u064a\u062f\u0629 \u0641\u0648\u0631\u064b\u0627\u060c \u062e\u0635\u0648\u0635\u064b\u0627 \u0644\u0648 \u0628\u062a\u0633\u062a\u062e\u062f\u0645 Middleware\n\n@y_2i9 \ud83e\ude76", "creation_timestamp": "2025-04-24T05:53:51.000000Z"}, {"uuid": "83b64234-61ec-4f24-8d7b-4a8169c139bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://gist.github.com/gmoigneu/e9982122600e5c6f6f995d754ca2529f", "content": "", "creation_timestamp": "2026-04-01T08:58:58.000000Z"}, {"uuid": "f55cdabe-7822-4603-b3aa-584615d2079f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3miubr57hto2u", "content": "", "creation_timestamp": "2026-04-06T22:10:12.997298Z"}, {"uuid": "d82a77b6-c110-4e91-97b3-c9b50b97e757", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/offensiverescuerangers/29", "content": "Intigriti \u043a\u0430\u0436\u0434\u044b\u0439 \u043c\u0435\u0441\u044f\u0446 \u043f\u043e\u0441\u0442\u044f\u0442 CTF \u0442\u0430\u0441\u043a\u0438, \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044f\u044f \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043f\u043e \u0441\u0441\u044b\u043b\u043a\u0435\n\nhttps://bugology.intigriti.io/intigriti-monthly-challenges/0525 - \u0440\u0430\u0439\u0442\u0430\u043f\u044b \u043d\u0430 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0438\u0435 \u0442\u0430\u0441\u043a\u0438.\n\n\u041d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u0432 \"hackdonalds\" \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u043d\u0435\u0434\u0430\u0432\u043d\u044f\u044f (\u043e\u0442\u043d\u043e\u0441\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0434\u0430\u0442\u044b \u0437\u0430\u043f\u0443\u0441\u043a\u0430 \u0437\u0430\u0434\u0430\u0447\u0438) \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2025-29927 \u0441 \u0431\u0430\u0439\u043f\u0430\u0441\u043e\u043c \u043c\u0438\u0434\u043b\u0432\u0430\u0440\u0438 \u0432 Next. \u041f\u043e\u044d\u0442\u043e\u043c\u0443 \u0442\u0430\u0441\u043a\u0438 \u0432\u043f\u043e\u043b\u043d\u0435 \u0430\u043a\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0435 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c\n\n#CTF", "creation_timestamp": "2025-06-19T09:39:14.000000Z"}, {"uuid": "1bc7f2b9-5e8a-4da3-8f46-eae7fc0ba679", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61363", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC for testing CVE-2025-29927 for Next.js versions 11.x, 12.x <= 12.3.5, 13.x <= 13.5.9, 14.x <=14.2.25, 15.x <= 15.2.3\nURL\uff1ahttps://github.com/liamromanis101/CVE-2025-29927-NextJS\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-02T10:22:27.000000Z"}, {"uuid": "862421b2-f6dd-475c-8823-72b5ba2b6346", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/offensiverescuerangers/11", "content": "\u2194\ufe0f Next.js \u0438 \u043f\u043e\u0432\u0440\u0435\u0436\u0434\u0451\u043d\u043d\u044b\u0439 middleware\n\n\u0420\u0430\u0441\u043a\u0440\u044b\u043b\u0438 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u043d\u043e\u0432\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Next.JS CVE-2025-29927. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 Next.js \u043d\u0430\u0447\u0438\u043d\u0430\u044f \u0441 11.1.4. \u0421\u0443\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u2014 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u0430\u044f \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0430 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0430 x-middleware-subrequest, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u0438\u0433\u043d\u043e\u0440\u0438\u0440\u043e\u0432\u0430\u0442\u044c middleware, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u0438 \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0438\u0441\u044c \u043f\u0443\u0442\u0435\u0439.\n\n\u041a\u0430\u043a \u044d\u0442\u043e \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442\n\nNext.js \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 x-middleware-subrequest \u0434\u043b\u044f \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0445 \u043d\u0443\u0436\u0434: \u043e\u043d \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u0442, \u043a\u0430\u043a\u0438\u0435 middleware \u0443\u0436\u0435 \u0431\u044b\u043b\u0438 \u043f\u0440\u043e\u0439\u0434\u0435\u043d\u044b. \u041e\u0434\u043d\u0430\u043a\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u0441\u0430\u043c \u043f\u043e\u0434\u0441\u0442\u0430\u0432\u0438\u0442\u044c \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435, \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u044e\u0449\u0435\u0435, \u0447\u0442\u043e middleware \u0443\u0436\u0435 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u0430\u043d, \u0438 \u0442\u0435\u043c \u0441\u0430\u043c\u044b\u043c \u043e\u0431\u043e\u0439\u0442\u0438 \u0432\u0441\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438.\nx-middleware-subrequest: middleware:middleware:middleware:middleware:middleware\nx-middleware-subrequest: src/middleware:src/middleware:src/middleware:src/middleware:src/middleware\n\u041f\u0440\u0438\u043c\u0435\u0440 \u0437\u0430\u043f\u0440\u043e\u0441\u0430:\nGET /admin/dashboard HTTP/1.1\nHost: vulnerable.site\nx-middleware-subrequest: middleware:middleware:middleware:middleware:middleware\n\u0420\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442: Middleware \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u0438\u0433\u043d\u043e\u0440\u0438\u0440\u0443\u0435\u0442\u0441\u044f, \u0438 \u0437\u0430\u043f\u0440\u043e\u0441 \u043f\u0440\u043e\u0445\u043e\u0434\u0438\u0442, \u043a\u0430\u043a \u0431\u0443\u0434\u0442\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d.\n\n\u0414\u0440\u0443\u0433\u0438\u0435 \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0438 \u0430\u0442\u0430\u043a\n\n\ud83d\udd39CSP bypass\n\u0415\u0441\u043b\u0438 middleware \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0435\u0442 Content-Security-Policy \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0438 - \u043e\u043d\u0438 \u0431\u0443\u0434\u0443\u0442 \u043f\u0440\u043e\u0438\u0433\u043d\u043e\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u044b.\n\n\ud83d\udd39DoS \u0447\u0435\u0440\u0435\u0437 Cache Poisoning\n\u041d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u0435\u0441\u043b\u0438 \u0441\u0430\u0439\u0442 \u0434\u0435\u043b\u0430\u0435\u0442 rewrite \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435 \u0433\u0435\u043e\u043b\u043e\u043a\u0430\u0446\u0438\u0438, \u043c\u043e\u0436\u043d\u043e \u0437\u0430\u043a\u044d\u0448\u0438\u0440\u043e\u0432\u0430\u0442\u044c \"\u043f\u0443\u0441\u0442\u0443\u044e\" \u0438\u043b\u0438 \u043e\u0448\u0438\u0431\u043e\u0447\u043d\u0443\u044e \u0432\u0435\u0440\u0441\u0438\u044e \u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b, \u043d\u0430\u0440\u0443\u0448\u0438\u0432 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0434\u043b\u044f \u0434\u0440\u0443\u0433\u0438\u0445.\n\n\u041a\u043e\u0433\u043e \u044d\u0442\u043e \u043a\u0430\u0441\u0430\u0435\u0442\u0441\u044f\n\u041f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0435 middleware \u0434\u043b\u044f \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u0438\u043b\u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0447\u0443\u0432\u0441\u0442\u0432\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0445 \u0437\u0430\u0434\u0430\u0447. \u0415\u0441\u043b\u0438 middleware \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f - \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0430\u043b\u043e\u0437\u043d\u0430\u0447\u0438\u043c\u0430 (\u043a\u0440\u043e\u043c\u0435 DoS-\u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0435\u0432).\n\n\ud83d\udcd6 \u041f\u043e\u0434\u0440\u043e\u0431\u043d\u0435\u0435:\nhttps://zhero-web-sec.github.io/research-and-things/nextjs-and-the-corrupt-middleware\n\n#web #bac #cache #dos #csp", "creation_timestamp": "2025-04-01T07:16:32.000000Z"}, {"uuid": "072d57ea-b2b3-402a-937c-6ad70e3a3147", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/33798", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927: Next.js Middleware Bypass Vulnerability\nURL\uff1ahttps://github.com/kh4sh3i/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-23T08:21:53.000000Z"}, {"uuid": "228e148c-9295-4651-b565-f537ddceb58a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/39634", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\nURL\uff1ahttps://github.com/B1ack4sh/Blackash-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-06-07T19:09:04.000000Z"}, {"uuid": "05c71ff7-0080-4c28-9daa-3262ae4598ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/g7PPXzsQx3EvDhE5SPzBeDUjd4Cr-dmtNyjjylDsMmWuZRM", "content": "", "creation_timestamp": "2025-06-09T15:00:10.000000Z"}, {"uuid": "02733f4c-0d8e-4f95-9254-a2ae685cc00e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/-AO2ncBEn2Sf_XctW68FAZrvZBAU7Cs6S6qsyaRZ06gRRxw", "content": "", "creation_timestamp": "2025-06-12T19:00:06.000000Z"}, {"uuid": "0ab51344-643a-48f9-b1e8-53047a66941f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/80HbSFrALuv6ewbfBBhs38UvYFQMjdc8WYdCrQAh3mMRxJc", "content": "", "creation_timestamp": "2025-06-15T23:00:06.000000Z"}, {"uuid": "1512655b-2cb2-4107-b50c-9208bd5f6030", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34614", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis is a CVE-2025-29927 Scanner.\nURL\uff1ahttps://github.com/HoumanPashaei/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-29T08:05:23.000000Z"}, {"uuid": "7d8c8422-b081-42c4-895f-2b59397edf7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/44033", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 PoC | Auth Bypass Exploit | Python Tool using httpx | Middleware Vulnerability | Ethical Hacking Toolkit\nURL\uff1ahttps://github.com/mickhacking/thank-u-next\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-14T18:33:26.000000Z"}, {"uuid": "0827f70f-9248-4c84-ac04-b9e27f86bc73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25384", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js CVE-2025-29927 Vulnerability Scanner\nURL\uff1ahttps://github.com/jmbowes/NextSecureScan\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T04:39:26.000000Z"}, {"uuid": "52f27c32-6a5a-4f33-adaa-940e40ae454c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/kBhBdCxvMUfwuHCOj75MWhUZkM6NuyWZ-pwu1UfEDMuxBak", "content": "", "creation_timestamp": "2025-05-27T19:20:53.000000Z"}, {"uuid": "6581676f-6285-4730-8f7d-31c0e8729463", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/ImGYwi0hkfRav_tFIvYQEJE2P5zoE2vWG2nPNeSrjv4QR_U", "content": "", "creation_timestamp": "2025-08-28T15:00:05.000000Z"}, {"uuid": "87de04d3-f71b-43d9-bc02-c041fd5cf192", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/cmsbotinfo/48", "content": "New Updates:\n1. Fixing engine crawler\n2. Update module CVE, included CVE-2025-29927, etc\n3. Added New Module Module Single Page Application (SPA)", "creation_timestamp": "2025-04-09T16:12:42.000000Z"}, {"uuid": "d1417867-0c07-4624-b21e-a1e4ef7f5c26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/BugBountyRu/325", "content": "\ud83d\udd77 \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f CVE-2025-29927 \u0432 Next.js \u043d\u0430 \u043f\u0440\u0430\u043a\u0442\u0438\u043a\u0435\n\n\u041f\u043e\u0447\u0435\u043c\u0443 \u043f\u0440\u0438 \u043f\u043e\u0438\u0441\u043a\u0435 \u0431\u0430\u0433\u043e\u0432 \u0432\u0430\u0436\u043d\u043e \u043d\u0435 \u043f\u043e\u043b\u0430\u0433\u0430\u0442\u044c\u0441\u044f \u0442\u043e\u043b\u044c\u043a\u043e \u043d\u0430 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u044b\u0435 \u0441\u043a\u0430\u043d\u0435\u0440\u044b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0430 \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442\u044c \u0433\u043b\u0443\u0431\u043e\u043a\u0438\u0439 \u0430\u043d\u0430\u043b\u0438\u0437 \u043f\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f?\n\n\u041f\u0443\u0431\u043b\u0438\u0447\u043d\u044b\u0435 \u043f\u0440\u0438\u043c\u0435\u0440\u044b \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 CVE-2025-29927 \u043f\u043e\u043a\u0430\u0437\u0430\u043b\u0438, \u0447\u0442\u043e \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u044b \u0438 \u0448\u0430\u0431\u043b\u043e\u043d\u044b (nuclei \u0438 \u0434\u0440\u0443\u0433\u0438\u0435) \u0431\u044b\u043b\u0438 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0442\u043e\u0447\u043d\u044b\u043c\u0438:\n\n\u2796\u043e\u043d\u0438 \u0443\u043f\u0443\u0441\u043a\u0430\u043b\u0438 \u0440\u0435\u0434\u0438\u0440\u0435\u043a\u0442\u044b;\n\u2796\u043f\u043e\u043b\u0430\u0433\u0430\u043b\u0438\u0441\u044c \u043d\u0430 \u043d\u0435\u0441\u0442\u0430\u0431\u0438\u043b\u044c\u043d\u044b\u0435 \u00ab\u0441\u0438\u0433\u043d\u0430\u043b\u044b\u00bb (x-middleware-*);\n\u2796\u0447\u0430\u0441\u0442\u043e \u0444\u043e\u043b\u0441\u0438\u043b\u0438.\n\n\u2705 \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0438\u0437 Assetnote \u0440\u0430\u0437\u043e\u0431\u0440\u0430\u043b\u0438\u0441\u044c, \u043a\u0430\u043a \u0442\u043e\u0447\u043d\u0435\u0435 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0432\u0430\u0442\u044c \u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441 \u043c\u0435\u043d\u044c\u0448\u0438\u043c \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u043e\u043c \u0444\u043e\u043b\u0441\u043e\u0432 \u0438 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432: \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0439\u0442\u0435 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a x-nextjs-data: 1, \u0447\u0442\u043e\u0431\u044b \u0437\u0430\u0441\u0442\u0430\u0432\u0438\u0442\u044c \u0441\u0435\u0440\u0432\u0435\u0440 \u0432\u0435\u0440\u043d\u0443\u0442\u044c x-nextjs-redirect.\n\n\u041f\u0440\u0438\u043c\u0435\u0440 \u0437\u0430\u043f\u0440\u043e\u0441\u0430:\nGET /foo\nHost: target\nX-Nextjs-Data: 1\n\n\u041e\u0442\u0432\u0435\u0442 \u043c\u043e\u0436\u0435\u0442 \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0442\u044c:\n307 Temporary Redirect\nx-nextjs-redirect: /\n\n\u0414\u043b\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a X-Middleware-Subrequest:\nX-Middleware-Subrequest: src/middleware:nowaf:...:pages/_middleware\n\n\u27a1\ufe0f \u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438:\n\n\u2796Next.js 15.x < 15.2.3,\n\u2796Next.js 14.x < 14.2.2,\n\u2796Next.js 13.x < 13.5.9.\n\nP. S. \u0412\u044b\u044f\u0432\u043b\u0435\u043d\u043d\u0430\u044f \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0432 Next.js \u043f\u043e\u043a\u0430\u0437\u0430\u043b\u0430, \u0447\u0442\u043e \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u044f \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u043e\u0432 \u0432 \u0441\u043b\u043e\u0435 middleware \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u043d\u0435\u043d\u0430\u0434\u0451\u0436\u043d\u043e\u0439, \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u0435\u0441\u043b\u0438 \u043e\u043d\u0430 \u043e\u043f\u0438\u0440\u0430\u0435\u0442\u0441\u044f \u043d\u0430 \u043f\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u0435, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u043c\u043e\u0436\u043d\u043e \u043e\u0431\u043e\u0439\u0442\u0438 \u0447\u0435\u0440\u0435\u0437 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0451\u043d\u043d\u044b\u0435 HTTP-\u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0438.\n\n#\u0442\u0435\u0445\u043d\u0438\u043a\u0438 #CVE", "creation_timestamp": "2025-03-29T12:56:26.000000Z"}, {"uuid": "bf62fbeb-c5a6-4578-85f5-52e9ba6a2492", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25275", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js POC for CVE-2025-29927\nURL\uff1ahttps://github.com/aleongx/nextjs-cve-2025-29927-poc\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T00:12:55.000000Z"}, {"uuid": "a9067f8e-3061-4563-b7aa-2684f1bdd754", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25625", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1apython script for evaluate if you are vulnerable or not to next.js CVE-2025-29927\nURL\uff1ahttps://github.com/nocomp/CVE-2025-29927-scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T14:13:49.000000Z"}, {"uuid": "7dd84028-eb15-4bc8-9646-8912857c1069", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/30320", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\nURL\uff1ahttps://github.com/pixilated730/NextJS-Exploit-\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-07T10:57:46.000000Z"}, {"uuid": "d02bd86c-95bb-44d7-b4e6-163e20f18d54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/true_secator/7891", "content": "\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Flare \u0440\u0430\u0441\u043a\u0440\u044b\u0432\u0430\u044e\u0442 \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u0443\u044e \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044e \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0447\u0435\u0440\u0432\u044f \u0438 React2Shell\u00a0(CVE-2025-55182, CVSS: 10.0), \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u0443\u044e \u043d\u0430 \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0435 \u0441\u0440\u0435\u0434\u044b \u0441 \u0446\u0435\u043b\u044c\u044e \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0434\u043b\u044f \u043f\u043e\u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0435\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438.\n\n\u0412\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u0430\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u044c \u043f\u043e\u043f\u0430\u043b\u0430 \u0432 \u043f\u043e\u043b\u0435 \u0437\u0440\u0435\u043d\u0438\u044f \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 25 \u0434\u0435\u043a\u0430\u0431\u0440\u044f 2025 \u0433\u043e\u0434\u0430. Flare \u043f\u0440\u0438\u043f\u0438\u0441\u0430\u043b\u0430 \u0435\u0435 TeamPCP (DeadCatx3, PCPcat, PersyPCP \u0438 ShellForce), \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u0430 \u0441 \u043d\u043e\u044f\u0431\u0440\u044f 2025 \u0433\u043e\u0434\u0430 \u0438 \u0443\u043f\u043e\u043c\u0438\u043d\u0430\u043b\u0430\u0441\u044c \u0432 \u0434\u0435\u043a\u0430\u0431\u0440\u0435 2025 \u0433\u043e\u0434\u0430 \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c Operation PCPcat \u0443 Beelzebub.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u043f\u0435\u0440\u0432\u043e\u0435 \u0443\u043f\u043e\u043c\u0438\u043d\u0430\u043d\u0438\u0435 \u0432 Telegram \u0434\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f 30 \u0438\u044e\u043b\u044f 2025 \u0433\u043e\u0434\u0430. \u0421 \u0442\u0435\u0445 \u043f\u043e\u0440 \u0433\u0440\u0443\u043f\u043f\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u043e \u043f\u0443\u0431\u043b\u0438\u043a\u0443\u0435\u0442 \u0443\u043a\u0440\u0430\u0434\u0435\u043d\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0445 \u0436\u0435\u0440\u0442\u0432 \u0438\u0437 \u041a\u0430\u043d\u0430\u0434\u044b, \u0421\u0435\u0440\u0431\u0438\u0438, \u042e\u0436\u043d\u043e\u0439 \u041a\u043e\u0440\u0435\u0438, \u041e\u0410\u042d \u0438 \u0421\u0428\u0410. \n\n\u041a\u0430\u043a \u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438, \u0446\u0435\u043b\u0438 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u0437\u0430\u043a\u043b\u044e\u0447\u0430\u044e\u0442\u0441\u044f \u0432 \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u0438 \u0440\u0430\u0441\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u043f\u0440\u043e\u043a\u0441\u0438-\u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0438 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0441 \u043f\u043e\u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u043c \u0432\u0437\u043b\u043e\u043c\u043e\u043c \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0434\u043b\u044f \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445, \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f ransomware, \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430 \u0438 \u043c\u0430\u0439\u043d\u0438\u043d\u0433\u0430 \u043a\u0440\u0438\u043f\u0442\u044b.\n\nTeamPCP \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u0443\u0435\u0442 \u043a\u0430\u043a \u043e\u0431\u043b\u0430\u0447\u043d\u0430\u044f \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0430 \u0434\u043b\u044f \u043a\u0438\u0431\u0435\u0440\u043f\u0440\u0435\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u044b\u0435 API Docker, API Kubernetes, \u043f\u0430\u043d\u0435\u043b\u0438 \u043c\u043e\u043d\u0438\u0442\u043e\u0440\u0438\u043d\u0433\u0430 Ray, \u0441\u0435\u0440\u0432\u0435\u0440\u044b Redis \u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0435 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f React/Next.js \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043e\u0441\u043d\u043e\u0432\u043d\u044b\u0445 \u043f\u0443\u0442\u0435\u0439 \u0437\u0430\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 \u0441\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0439 \u043e\u0431\u043b\u0430\u0447\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0441 \u0446\u0435\u043b\u044c\u044e \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430.\n\n\u041a\u0440\u043e\u043c\u0435 \u0442\u043e\u0433\u043e, \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0441\u0430\u043c\u044b\u0445 \u0440\u0430\u0437\u043d\u044b\u0445 \u0446\u0435\u043b\u044f\u0445, \u043e\u0442 \u043c\u0430\u0439\u043d\u0438\u043d\u0433\u0430 \u043a\u0440\u0438\u043f\u0442\u044b \u0438 \u0440\u0430\u0437\u043c\u0435\u0449\u0435\u043d\u0438\u044f \u0434\u0430\u043d\u043d\u044b\u0445 \u0434\u043e \u043f\u0440\u043e\u043a\u0441\u0438-\u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0438 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 C2.\n\nTeamPCP \u043e\u043f\u0438\u0440\u0430\u0435\u0442\u0441\u044f \u043d\u0430 \u043f\u0440\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u0435 \u0432\u0440\u0435\u043c\u0435\u043d\u0435\u043c \u043c\u0435\u0442\u043e\u0434\u044b \u0430\u0442\u0430\u043a, \u0442\u0430\u043a\u0438\u0435 \u043a\u0430\u043a \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u044b, \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0438 \u043e\u0448\u0438\u0431\u043a\u0438 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043e\u043f\u0435\u0440\u0430\u0442\u043e\u0440\u0430\u043c \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0443 \u0434\u043b\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0441 \u00ab\u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0430\u0446\u0438\u0435\u0439 \u0438 \u0438\u043d\u0434\u0443\u0441\u0442\u0440\u0438\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0435\u0439\u00bb \u0432\u0441\u0435\u0433\u043e \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430.\n\n\u041a\u0430\u043a \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442 Flare, \u044d\u0442\u043e, \u0432 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u043f\u0440\u0435\u0432\u0440\u0430\u0449\u0430\u0435\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u0443\u044e \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0443 \u0432 \u00ab\u0441\u0430\u043c\u043e\u0432\u043e\u0441\u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u044f\u0449\u0443\u044e\u0441\u044f \u043a\u0440\u0438\u043c\u0438\u043d\u0430\u043b\u044c\u043d\u0443\u044e \u044d\u043a\u043e\u0441\u0438\u0441\u0442\u0435\u043c\u0443\u00bb.\n\n\u0423\u0441\u043f\u0435\u0448\u043d\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u0435\u0442 \u043f\u0443\u0442\u044c \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u043f\u043e\u043b\u0435\u0437\u043d\u044b\u0445 \u043d\u0430\u0433\u0440\u0443\u0437\u043e\u043a \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0435\u0433\u043e \u044d\u0442\u0430\u043f\u0430 \u0441 \u0432\u043d\u0435\u0448\u043d\u0438\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0441\u043a\u0440\u0438\u043f\u0442\u044b \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435 \u043a\u043e\u043c\u0430\u043d\u0434\u043d\u043e\u0439 \u043e\u0431\u043e\u043b\u043e\u0447\u043a\u0438 \u0438 Python, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0437\u0430\u0442\u0435\u043c \u043f\u043e\u0434\u0431\u0438\u0440\u0430\u044e\u0442 \u0438\u0449\u0443\u0442 \u043d\u043e\u0432\u044b\u0435 \u0446\u0435\u043b\u0438 \u0434\u043b\u044f \u0434\u0430\u043b\u044c\u043d\u0435\u0439\u0448\u0435\u0433\u043e \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u044f.\n\n\u041e\u0434\u043d\u0438\u043c \u0438\u0437 \u043e\u0441\u043d\u043e\u0432\u043d\u044b\u0445 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u043e\u0432 \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f proxy.sh, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0435\u0442 \u0443\u0442\u0438\u043b\u0438\u0442\u044b \u0434\u043b\u044f \u043f\u0440\u043e\u043a\u0441\u0438-\u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432, \u043e\u0434\u043d\u043e\u0440\u0430\u043d\u0433\u043e\u0432\u044b\u0445 \u0441\u0435\u0442\u0435\u0439 (P2P) \u0438 \u0442\u0443\u043d\u043d\u0435\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0435 \u0441\u043a\u0430\u043d\u0435\u0440\u044b \u0434\u043b\u044f \u043f\u043e\u0438\u0441\u043a\u0430 \u0432 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0438 \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432.\n\n\u041f\u0440\u0438\u043c\u0435\u0447\u0430\u0442\u0435\u043b\u044c\u043d\u043e, \u0447\u0442\u043e proxy.sh \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u0442 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e \u0441\u0440\u0435\u0434\u044b \u0432\u043e \u0432\u0440\u0435\u043c\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f. \u041d\u0430 \u0440\u0430\u043d\u043d\u0435\u0439 \u0441\u0442\u0430\u0434\u0438\u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043e\u043d \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0435\u0442, \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u043b\u0438 \u043e\u043d \u0432\u043d\u0443\u0442\u0440\u0438 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0430 Kubernetes.\n\n\u041f\u043e\u0441\u043b\u0435 \u0447\u0435\u0433\u043e \u0441\u043a\u0440\u0438\u043f\u0442 \u043f\u0435\u0440\u0435\u0445\u043e\u0434\u0438\u0442 \u0432 \u043e\u0442\u0434\u0435\u043b\u044c\u043d\u044b\u0439 \u043f\u0443\u0442\u044c \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0438 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0435\u0442 \u0432\u0442\u043e\u0440\u0438\u0447\u043d\u0443\u044e \u043f\u043e\u043b\u0435\u0437\u043d\u0443\u044e \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0443, \u0441\u043f\u0435\u0446\u0438\u0444\u0438\u0447\u043d\u0443\u044e \u0434\u043b\u044f \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0430, \u0447\u0442\u043e \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 TeamPCP \u043e\u0442\u0434\u0435\u043b\u044c\u043d\u044b\u0445 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u0438 \u043c\u0435\u0442\u043e\u0434\u043e\u0432 \u0434\u043b\u044f \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0445 \u0446\u0435\u043b\u0435\u0439 \u0432\u043c\u0435\u0441\u0442\u043e \u0443\u043d\u0438\u0432\u0435\u0440\u0441\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e \u0434\u043b\u044f Linux.\n\n\u0421\u0440\u0435\u0434\u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u043f\u043e\u043b\u0435\u0437\u043d\u044b\u0445 \u043d\u0430\u0433\u0440\u0443\u0437\u043e\u043a: \n- scanner.py (\u0434\u043b\u044f \u043f\u043e\u0438\u0441\u043a\u0430 \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u044b\u0445 API Docker \u0438 \u043f\u0430\u043d\u0435\u043b\u0435\u0439 Ray); \n- kube.py (\u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u0432 \u0441\u0435\u0431\u044f \u0441\u043f\u0435\u0446\u0438\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0434\u043b\u044f Kubernetes \u0444\u0443\u043d\u043a\u0446\u0438\u0438 \u0441\u0431\u043e\u0440\u0430 \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0430, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043e\u043f\u0446\u0438\u0438 \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0438 \u0431\u044d\u043a\u0434\u043e\u0440\u0430); \n- react.py (\u043d\u0430\u0446\u0435\u043b\u0438\u0432\u0430\u043d\u0438\u0435 \u043d\u0430 CVE-2025-29927 \u0434\u043b\u044f \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043b\u0435\u043d\u0438\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u043c\u0430\u043d\u0434);\n- pcpcat.py (\u0434\u043b\u044f \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u0445 API Docker \u0438 \u043f\u0430\u043d\u0435\u043b\u0435\u0439 Ray, \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0430 \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u043e\u043b\u0435\u0437\u043d\u043e\u0439 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0438).\n\nFlare \u0437\u0430\u043c\u0435\u0442\u0438\u043b\u0430, \u0447\u0442\u043e \u0443\u0437\u0435\u043b C2 \u043f\u043e \u0430\u0434\u0440\u0435\u0441\u0443 67.217.57[.]240 \u0442\u0430\u043a\u0436\u0435 \u0441\u0432\u044f\u0437\u0430\u043d \u0441 \u0440\u0430\u0431\u043e\u0442\u043e\u0439\u00a0Sliver, \u043a\u043e\u0442\u043e\u0440\u044b\u0439, \u043a\u0430\u043a \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438 \u0434\u043b\u044f \u043f\u043e\u0441\u0442\u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0446\u0435\u043b\u0435\u0439.\n\n\u0422\u0435\u043b\u0435\u043c\u0435\u0442\u0440\u0438\u044f \u0442\u0430\u043a\u0436\u0435 \u043f\u043e\u043a\u0430\u0437\u044b\u0432\u0430\u044e\u0442, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0432 \u043e\u0441\u043d\u043e\u0432\u043d\u043e\u043c \u0432\u044b\u0431\u0438\u0440\u0430\u044e\u0442 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043c\u0438\u0448\u0435\u043d\u0438 \u0441\u0440\u0435\u0434\u044b Amazon Web Services (AWS) \u0438 Microsoft Azure.\n\n\u0410\u0442\u0430\u043a\u0438 \u043d\u043e\u0441\u044f\u0442 \u043e\u043f\u043f\u043e\u0440\u0442\u0443\u043d\u0438\u0441\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0445\u0430\u0440\u0430\u043a\u0442\u0435\u0440 \u0438, \u0432 \u043f\u0435\u0440\u0432\u0443\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u044b \u043d\u0430 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0443, \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u0438\u0445 \u0446\u0435\u043b\u0430\u043c, \u0430 \u043d\u0435 \u043a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u044b\u043c \u043e\u0442\u0440\u0430\u0441\u043b\u044f\u043c. \n\n\u0412 \u0446\u0435\u043b\u043e\u043c, \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f PCPcat \u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u0443\u0435\u0442 \u043f\u043e\u043b\u043d\u044b\u0439 \u0436\u0438\u0437\u043d\u0435\u043d\u043d\u044b\u0439 \u0446\u0438\u043a\u043b \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438, \u0437\u0430\u043a\u0440\u0435\u043f\u043b\u0435\u043d\u0438\u044f \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435, \u0442\u0443\u043d\u043d\u0435\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f, \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u043c\u043e\u043d\u0435\u0442\u0438\u0437\u0430\u0446\u0438\u0438, \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0430\u043d\u043d\u044b\u0439 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0434\u043b\u044f \u0441\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0439 \u043e\u0431\u043b\u0430\u0447\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b.\n\n\u041e\u0441\u043d\u043e\u0432\u043d\u0430\u044f \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u043a\u043b\u044e\u0447\u0430\u0435\u0442\u0441\u044f \u0432 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0438\u043d\u0442\u0435\u0433\u0440\u0430\u0446\u0438\u0438 \u0438 \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u0438\u0440\u0443\u0435\u043c\u043e\u0441\u0442\u0438, \u0430 \u0433\u0438\u0431\u0440\u0438\u0434\u043d\u0430\u044f \u043c\u043e\u0434\u0435\u043b\u044c \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0433\u0440\u0443\u043f\u043f\u0435 \u043c\u043e\u043d\u0435\u0442\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043a\u0430\u043a \u0432\u044b\u0447\u0438\u0441\u043b\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u044b, \u0442\u0430\u043a \u0438 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e.", "creation_timestamp": "2026-02-09T15:51:07.000000Z"}, {"uuid": "d9f302a2-5472-4109-bd78-df7edcdec279", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/55698", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aUna CTF, in formato DSP-compliant, basata sulla CVE-2025-29927 di nextjs.\nURL\uff1ahttps://github.com/NS-Projects-Unina/CTF_CVE_DSP_1\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-16T10:51:36.000000Z"}, {"uuid": "cbd5b231-0d82-4382-bb75-db6880896f53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25593", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\uc5d0 \ub300\ud55c \uc124\uba85 \ubc0f \ub9ac\uc11c\uce58\nURL\uff1ahttps://github.com/KaztoRay/CVE-2025-29927-Research\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-28T03:07:44.000000Z"}, {"uuid": "a257cb0a-5860-4263-80d5-2f5677f5de4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/26660", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js CVE-2025-29927 demonstration\nURL\uff1ahttps://github.com/dante01yoon/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-29T08:50:50.000000Z"}, {"uuid": "a8b783bb-3286-4f09-8b47-836bed9de9d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/26502", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aHere is a simple but effective exploit for CVE-2025-29927.\nURL\uff1ahttps://github.com/w2hcorp/CVE-2025-29927-Exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-29T02:18:01.000000Z"}, {"uuid": "10d10731-20d9-4e41-8f6f-9511608aa40f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/HT3M5qBEKW8k_WPn3-1S0A8sGyWZrHWLLjtXbIlw-iFvVyA", "content": "", "creation_timestamp": "2026-04-04T15:00:08.000000Z"}, {"uuid": "8c80d280-243b-4fdc-a254-2a010eabff37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/EO_oQLYXFZJHpYU3zijqCehoUCKssCsFVC4BHatuitA81Fg", "content": "", "creation_timestamp": "2025-10-08T09:00:05.000000Z"}, {"uuid": "f4936172-ca87-4303-b6f9-0b08093a7ac3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/eiq80vTfK0uEvpSaVkLstXl9YEDfyEgGUyA39bKhe3J3sOM", "content": "", "creation_timestamp": "2026-04-24T09:00:04.000000Z"}, {"uuid": "7eadf789-bf6d-479d-af19-a4d47b7a8b52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/54582", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aReproduction and fix of the CVE-2025-29927 vulnerability.\nURL\uff1ahttps://github.com/Bongni/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-08T02:06:12.000000Z"}, {"uuid": "2dea71a4-64c9-4187-9f63-5ae05de7a15d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24537", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 Proof of Concept \nURL\uff1ahttps://github.com/ThemeHackers/CVE-2025-29972\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T18:01:52.000000Z"}, {"uuid": "215e2618-a606-465a-b3dc-d4d398a3ba10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8885", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2825\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0 are affected by a vulnerability that may result in unauthenticated access. Remote and unauthenticated HTTP requests to CrushFTP may allow attackers to gain unauthorized access.\n\ud83d\udccf Published: 2025-03-26T15:58:14.218Z\n\ud83d\udccf Modified: 2025-03-26T16:17:26.040Z\n\ud83d\udd17 References:\n1. https://www.crushftp.com/crush11wiki/Wiki.jsp?page=Update\n2. https://www.rapid7.com/blog/post/2025/03/25/etr-notable-vulnerabilities-in-next-js-cve-2025-29927/\n3. https://www.runzero.com/blog/crushftp/", "creation_timestamp": "2025-03-26T16:25:16.000000Z"}, {"uuid": "95dac7ae-641d-46ad-a811-ebb28c272e9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/jbT4DyaXAQWEEBg3Kh-8FLm9_wvzpJ1MV36Ko8B3bIBgXlo", "content": "", "creation_timestamp": "2026-01-13T15:00:06.000000Z"}, {"uuid": "7c75fc0f-81e5-4997-9292-d4b3aad561cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24072", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aSigma Rule for CVE-2025\u201329927 Detection\nURL\uff1ahttps://github.com/elshaheedy/CVE-2025-29927-Sigma-Rule\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T23:17:05.000000Z"}, {"uuid": "6c12ffa2-fcd2-46f4-adb7-5262499c415f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10140", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30218\n\ud83d\udd25 CVSS Score: 1.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U)\n\ud83d\udd39 Description: Next.js is a React framework for building full-stack web applications. To mitigate CVE-2025-29927, Next.js validated the x-middleware-subrequest-id which persisted across multiple incoming requests. However, this subrequest ID is sent to all requests, even if the destination is not the same host as the Next.js application. Initiating a fetch request to a third-party within Middleware will send the x-middleware-subrequest-id to that third party. This vulnerability is fixed in 12.3.6, 13.5.10, 14.2.26, and 15.2.4.\n\ud83d\udccf Published: 2025-04-02T21:23:14.660Z\n\ud83d\udccf Modified: 2025-04-02T21:23:14.660Z\n\ud83d\udd17 References:\n1. https://github.com/vercel/next.js/security/advisories/GHSA-223j-4rm8-mrmf\n2. https://vercel.com/changelog/cve-2025-30218-5DREmEH765PoeAsrNNQj3O", "creation_timestamp": "2025-04-02T21:34:07.000000Z"}, {"uuid": "a028725c-86a0-4cc2-bc47-a817f4c31213", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/dX7Pwj7PqnF2da8IVWPgq-aFC6NZmOtStQ4m7OfqjtGR_0Q", "content": "", "creation_timestamp": "2025-12-02T15:00:08.000000Z"}, {"uuid": "ce105aba-8b7e-4b70-b643-136a04214f38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/6XnGIsbV0NWVlKB4IcPwvSJwsA-naOFrgxqM1g1tHbSKHTc", "content": "", "creation_timestamp": "2026-04-26T09:00:04.000000Z"}, {"uuid": "a025bddb-8b53-4186-a8b9-34cd0070dc10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/WFP8lP7jDUDSH2fQiJTJZDz8d43cmLTdfk9ZEFHqzrVxFLQ", "content": "", "creation_timestamp": "2025-10-15T21:00:08.000000Z"}, {"uuid": "3646cc5b-22d6-400f-a92e-5de416751b5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/29929", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Balajih4kr/cve-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-05T17:14:59.000000Z"}, {"uuid": "4db2c28a-2e43-450d-b9cc-9b776e43fce4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "Telegram/TYo-tUYtY4yoEXhJVKLpp5w3OfhrOAScdxsUdCHbWOXddqU", "content": "", "creation_timestamp": "2025-10-04T09:00:05.000000Z"}, {"uuid": "9241f488-b292-4c44-8b40-4bfb5d03e294", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/30519", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 ~ a poc of the next.js middleware authentication bypass\nURL\uff1ahttps://github.com/ValGrace/middleware-auth-bypass\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-08T08:11:22.000000Z"}, {"uuid": "e2eacd6d-1c34-4426-8170-a8aa727c904d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23109", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA Nuclei template to detect CVE-2025-29927 the Next.js authentication bypass vulnerability\nURL\uff1ahttps://github.com/6mile/nextjs-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-23T08:12:52.000000Z"}, {"uuid": "ce2cfe00-e735-4ea5-9a45-9ea74039b028", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/22716", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aVerify Next.js CVE-2025-29927 on Netlify not vulnerable\nURL\uff1ahttps://github.com/serhalp/test-cve-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-22T16:02:32.000000Z"}, {"uuid": "f3a438a6-f042-4894-9168-012d90233a5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23624", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 Exploit Checker\nURL\uff1ahttps://github.com/RoyCampos/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T05:10:48.000000Z"}, {"uuid": "08e5fe7f-9faf-4cc7-867f-57bcc44b73a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23623", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 lab\nURL\uff1ahttps://github.com/strobes-security/nextjs-vulnerable-app\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T05:06:36.000000Z"}, {"uuid": "e4f32fb7-092c-49e7-894b-045546f85b73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23975", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA deliberately Next.js app, vulnerable to CVE-2025-29927, Authorization Bypass \nURL\uff1ahttps://github.com/0xWhoknows/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T19:21:18.000000Z"}, {"uuid": "82fe938a-7ef1-4ab2-8455-fc017540f794", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25153", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js Acceso no autorizado CVE-2025-29927\nURL\uff1ahttps://github.com/aleongx/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T06:37:18.000000Z"}, {"uuid": "cb2fd220-29a6-4597-a53a-cc65457539a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25459", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aEste script verifica la vulnerabilidad CVE-2025-29927 en servidores Next.js, probando m\u00faltiples cargas en la cabecera x-middleware-subrequest para detectar accesos no autorizados.\nURL\uff1ahttps://github.com/aleongx/CVE-2025-29927_Scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T07:43:04.000000Z"}, {"uuid": "0c345f8a-2290-48da-b348-be4004171a04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/29481", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js Middleware Authorization Bypass Tool (CVE-2025-29927)\nURL\uff1ahttps://github.com/fahimalshihab/NextBypass\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-26T15:28:43.000000Z"}, {"uuid": "a669d6ad-d78c-4187-97e8-d217864a4efe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34522", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\nURL\uff1ahttps://github.com/hed1ad/my-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-28T11:17:40.000000Z"}, {"uuid": "e0cff15f-82ca-4bc0-a552-52dac6aa9fe4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24538", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1ascript to check cve \\\"CVE-2025-29927\\\" while waiting to add it to HExHTTP\nURL\uff1ahttps://github.com/c0dejump/CVE-2025-29927-check\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T18:06:00.000000Z"}, {"uuid": "54152fd8-3d14-4338-be39-3d5bf039715c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23974", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA deliberately Next.js app, vulnerable to CVE-2025-29927, Authorization Bypass \nURL\uff1ahttps://github.com/ricsirigu/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T19:17:00.000000Z"}, {"uuid": "9874327d-d348-46d7-bb84-6d509dc6adbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/28236", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a CVE-2025-29927 Bypass Authorization Next.js \nURL\uff1ahttps://github.com/a9v8i/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-02T05:28:59.000000Z"}, {"uuid": "047c5eb1-257f-4706-8494-2390f5d7a5bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/28857", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA basic proof of concept of the CVE-2025-29927 vulnerability that allows to bypass the middleware scripts.\nURL\uff1ahttps://github.com/Naveen-005/Next.Js-middleware-bypass-vulnerability-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-02T05:21:56.000000Z"}, {"uuid": "e09e455e-cc30-4bf9-b3b6-ec2617eb0949", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/30754", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aResearch on Next.js middleware vulnerability (CVE-2025-29927) allowing authorization bypass and potential exploits.\nURL\uff1ahttps://github.com/l1uk/nextjs-middleware-exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-09T15:09:26.000000Z"}, {"uuid": "ad18003d-cef2-4c9b-8551-67d56ea4a0da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23900", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\u306e\u691c\u8a3c\nURL\uff1ahttps://github.com/kuzushiki/CVE-2025-29927-test\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T16:29:51.000000Z"}, {"uuid": "e939277e-a995-48fe-a8ce-32b7f41889e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24379", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aScript to test if a web app is vulnerable to CVE-2025-29927\nURL\uff1ahttps://github.com/TheresAFewConors/CVE-2025-29927-Testing\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T11:48:30.000000Z"}, {"uuid": "35e990bc-042f-4400-81de-cd0f7ba778a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24678", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/kOaDT/poc-cve-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-26T00:14:57.000000Z"}, {"uuid": "daece8a9-6aa3-40c7-a028-b3e78393206f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23827", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 Authorization Bypass in Next.js Middleware\nURL\uff1ahttps://github.com/arvion-agent/next-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T13:26:52.000000Z"}, {"uuid": "c29b3903-46c9-4bde-b77a-38fe224d6b7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24347", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC for CVE-2025-29927: Next.js Middleware Bypass Vulnerability. Demonstrates how x-middleware-subrequest can bypass authentication checks. Includes Docker setup for testing.\nURL\uff1ahttps://github.com/alihussainzada/CVE-2025-29927-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T10:40:30.000000Z"}, {"uuid": "e750110f-196d-47db-9f8b-b946b15145a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24346", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aGhost Route detects if a Next JS site is vulnerable to the corrupt middleware bypass bug (CVE-2025-29927)\nURL\uff1ahttps://github.com/takumade/ghost-route\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T10:36:11.000000Z"}, {"uuid": "611b90a3-f7eb-4bda-9d39-600c01c10ff4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/GithubRedTeam/32191", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-30567 - WordPress WP01 < Path traversal\nURL\uff1ahttps://github.com/Knotsecurity/CVE-2025-29927-NextJs-Middleware-Simulation\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-16T08:13:08.000000Z"}, {"uuid": "766b4e97-4a71-4da7-9a08-2f1e19645218", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/31851", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aExploit for CVE-2025-29927 (Next.js) - Authorization Bypass\nURL\uff1ahttps://github.com/UNICORDev/exploit-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-14T20:23:09.000000Z"}, {"uuid": "10be54ab-e032-40e0-9022-6cdd766543ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23213", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 Proof of Concept\nURL\uff1ahttps://github.com/aydinnyunus/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-23T12:16:20.000000Z"}, {"uuid": "6a567780-ec1c-40a8-8b46-8660e7bdf0ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23790", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js POC for CVE-2025-29927\nURL\uff1ahttps://github.com/azu/nextjs-cve-2025-29927-poc\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T11:53:04.000000Z"}, {"uuid": "0432eea9-d22c-4c90-8900-c02fef483f61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23730", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.Js \u6743\u9650\u7ed5\u8fc7\u6f0f\u6d1e(CVE-2025-29927)\nURL\uff1ahttps://github.com/iSee857/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T09:30:58.000000Z"}, {"uuid": "cbeb0d73-c27d-4bf8-bd5f-e896a7bbb3b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25487", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1ahow to hack 90% of next.js created websites with CVE-2025-29927 vulnerability exploit \nURL\uff1ahttps://github.com/Nekicj/CVE-2025-29927-exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T08:43:53.000000Z"}, {"uuid": "a5c720fd-87c3-4885-991a-3958ab9272c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23697", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aDemo for Next.js middleware bypass - CVE-2025-29927\nURL\uff1ahttps://github.com/fourcube/nextjs-middleware-bypass-demo\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T08:09:52.000000Z"}, {"uuid": "aafe4421-df7c-438f-8775-3faa93486274", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25403", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis script checks if a given website running Next.js is vulnerable to CVE-2025-29927, a critical middleware bypass vulnerability.\nURL\uff1ahttps://github.com/ferpalma21/Automated-Next.js-Security-Scanner-for-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-28T03:08:37.000000Z"}, {"uuid": "40ba510a-a2ef-4a48-94cc-7b8175fe52ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/26132", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNextSploit is a command-line tool designed to detect and exploit CVE-2025-29927, a security flaw in Next.js\nURL\uff1ahttps://github.com/AnonKryptiQuz/NextSploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-28T11:12:14.000000Z"}, {"uuid": "5a57911d-0337-4293-bfa0-cd06fa9af60c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/26045", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927: Next.js Middleware Exploit\nURL\uff1ahttps://github.com/0x0Luk/0xMiddleware\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-28T07:34:01.000000Z"}, {"uuid": "b4e3ff40-63ad-4b9b-bbba-cc638fb6ed7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/27124", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js Auth Bypass Lab \u2010 CVE-2025-29927\nURL\uff1ahttps://github.com/ayato-shitomi/WebLab_CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-30T03:54:51.000000Z"}, {"uuid": "f6f19834-5f03-4d14-8195-169409626299", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/28609", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js CVE-2025-29927 g\u00fcvenlik a\u00e7\u0131\u011f\u0131 hakk\u0131nda\nURL\uff1ahttps://github.com/BilalGns/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-01T19:14:29.000000Z"}, {"uuid": "2d78ec98-1c06-4e7b-afc6-06675ec1bdde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/51191", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a\ud83d\udd13 Explore CVE-2025-31258 with this PoC demonstrating partial sandbox escape using RemoteViewServices for practical 1-day security practice.\nURL\uff1ahttps://github.com/MKIRAHMET/CVE-2025-29927-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-11T20:56:46.000000Z"}, {"uuid": "563ca360-4853-42bf-8928-d3fc10b1796f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34529", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\nURL\uff1ahttps://github.com/hed1ad/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-28T12:55:58.000000Z"}, {"uuid": "7e8912fc-842a-426e-b2d0-fb63484f2030", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/52769", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js middleware auth-bypass lab (CVE-2025-29927 simulation)\nURL\uff1ahttps://github.com/amalpvatayam67/day10-nextjs-middleware-lab\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-23T11:24:56.000000Z"}, {"uuid": "ccc9c36e-e777-41e2-a209-183ffcb5ffad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/38174", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a\ud83d\udd10 Python-based smart scanner for CVE-2025-29927 \u2014 Next.js middleware authentication bypass vulnerability. Detects meta refresh, keyword-based redirects, and more.\nURL\uff1ahttps://github.com/sagsooz/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-05-26T08:49:11.000000Z"}, {"uuid": "d3494490-d3c8-40ee-9130-8f29bde8439d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/30071", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1avulnerable-nextjs-14-CVE-2025-29927\nURL\uff1ahttps://github.com/YEONDG/nextjs-cve-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-06T08:48:32.000000Z"}, {"uuid": "276695b2-ceb1-4953-8f01-9bb2cebb21bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/35966", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1ax-middleware exploit for next.js CVE-2023\u201346298 cache poisoning and CVE-2025-29927 bypass\nURL\uff1ahttps://github.com/EarthAngel666/x-middleware-exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-05-08T01:39:43.000000Z"}, {"uuid": "363237f8-8065-4d02-a1e7-e82366a3c8a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/31180", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js CVE-2025-29927 Hunter\nURL\uff1ahttps://github.com/darklotuskdb/nextjs-CVE-2025-29927-hunter\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-11T20:46:30.000000Z"}, {"uuid": "1a3c21e0-cf46-490e-84f6-d200ead066a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/31512", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPOC CVE-2025-29927\nURL\uff1ahttps://github.com/ethanol1310/POC-CVE-2025-29927-\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-13T08:27:18.000000Z"}, {"uuid": "ac1ba284-5ac5-49b6-87b0-e732c20c897c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/54095", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aSimple script to attempt a Bypass on a server possibly vulnerable to CVE-2025-29927 (Next.js Middleware)\nURL\uff1ahttps://github.com/diogolourencodev/middleforce\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-04T03:44:40.000000Z"}, {"uuid": "4f1d3d22-0c26-4f57-b7bd-92c3984c4d81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/38556", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1avulnerable-nextjs-14-CVE-2025-29927\nURL\uff1ahttps://github.com/SugiB3o/vulnerable-nextjs-14-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-05-29T16:11:53.000000Z"}, {"uuid": "293aee58-bd91-46c1-a73f-9c4af64df819", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/44035", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 PoC | Auth Bypass Exploit | Python Tool using httpx | Middleware Vulnerability | Ethical Hacking Toolkit\nURL\uff1ahttps://github.com/mickhacking/Thank-u-Next\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-14T18:48:16.000000Z"}, {"uuid": "db882fff-098a-4ff7-965b-e92497c9fd0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/51185", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA method for CVE-2025-31710 and to connect to cmd_skt to obtain a root shell on unisoc unpatched models\nURL\uff1ahttps://github.com/MKIRAHMET/CVE-2025-29927-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-11T19:32:48.000000Z"}, {"uuid": "8ba0d1b1-6525-47d3-9b8f-c9f734b41faf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/NfG2wxT-KyQZJHEuLXZRhdP_yV3P9CCTnZ9CuQXcRTtKeZM", "content": "", "creation_timestamp": "2025-09-12T06:00:05.000000Z"}, {"uuid": "f4af36f2-5827-474b-ae8b-6bd5af83d0f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/52737", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\nURL\uff1ahttps://github.com/sermikr0/nextjs-middleware-auth-bypass\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-23T06:12:09.000000Z"}, {"uuid": "e4dd9194-79b6-469e-88c0-8cda5dd6d23b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/45834", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a\u2192 poc for CVE-2025-29927\nURL\uff1ahttps://github.com/b4sh0xf/PoC-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-29T17:26:50.000000Z"}, {"uuid": "55867c01-4c3d-4dbb-b862-d785dcc7af58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/42489", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a> \ud83d\udd13 Proof-of-Concept for a fictional Next.js middleware bypass (CVE-2025-29927) \u2014 craft sub-requests to test protected routes.\nURL\uff1ahttps://github.com/m2hcz/PoC-for-Next.js-Middleware\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-06-30T10:50:08.000000Z"}, {"uuid": "41b8ecfb-117d-4505-b7fb-836720b2c116", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/43099", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC of CVE-2025-29927\nURL\uff1ahttps://github.com/aest3ra/NextJS-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-05T16:40:15.000000Z"}, {"uuid": "c01622b7-9511-4e26-9a83-7a3a9a00dd00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/ms_YhavfT6nz1IpjuH3beTwzL8M2lpUXtRj6qgr2iuZ0", "content": "", "creation_timestamp": "2025-03-24T09:35:02.000000Z"}, {"uuid": "7d0b3e62-8379-4e48-96e0-349b472b75e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/NinjaSec/299", "content": "Code execution, and bypass vulnerabilities \u2014 for educational purposes only:\n\n\n1. CVE-2025-47241 \u2013 Whitelist bypass in Browser Use tool (CVSS 9.3)\n2. CVE-2025-25014 \u2013 Prototype pollution in Kibana (CVSS 9.1)\n3. CVE-2025-29927 \u2013 Next.js middleware authorization bypass (CVSS 9.1)\n4. CVE-2025-24813 \u2013 Apache Tomcat path traversal RCE (Critical)\n5. CVE-2025-2783 \u2013 Chrome Mojo use-after-free (High)\n6. CVE-2025-2636 \u2013 WordPress InstaWP plugin LFI (High)\n7. CVE-2025-2505 \u2013 WordPress Age Gate plugin LFI (High)\n8. CVE-2025-2746 \u2013 Kentico CMS auth bypass (CVSS 9.8)\n9. CVE-2025-2747 \u2013 Kentico CMS staging sync auth bypass (CVSS 9.8)\n10. CVE-2025-3066 \u2013 Chrome Site Isolation use-after-free (High)\n11. CVE-2025-46728 \u2013 cpp-httplib DoS vulnerability\n12. CVE-2025-12345 \u2013 Buffer overflow in XYZ app (CVSS 9.0)\n13. CVE-2025-12346 \u2013 SQL injection in ABC web app (CVSS 8.5)\n14. CVE-2025-12347 \u2013 XSS in DEF platform (CVSS 7.8)\n15. CVE-2025-12348 \u2013 Auth bypass in GHI system (CVSS 9.2)\n16. CVE-2025-12349 \u2013 RCE in JKL service via crafted packets (CVSS 9.5)\n17. CVE-2025-12350 \u2013 Privilege escalation in MNO app (CVSS 8.7)\n18. CVE-2025-12351 \u2013 Info disclosure in PQR system (CVSS 7.5)\n19. CVE-2025-12352 \u2013 DoS in STU server (CVSS 6.8)\n20. CVE-2025-12353 \u2013 Directory traversal in VWX app (CVSS 8.0)\n21. CVE-2025-12354 \u2013 Command injection in YZA tool (CVSS 9.1)\n22. CVE-2025-12355 \u2013 Insecure deserialization in BCD lib (CVSS 9.3)\n23. CVE-2025-12356 \u2013 CSRF in EFG portal (CVSS 7.2)\n24. CVE-2025-12357 \u2013 Memory corruption in HIJ driver (CVSS 8.9)\n25. CVE-2025-12358 \u2013 Improper auth in KLM API (CVSS 9.0)\n\n#HackersFactory", "creation_timestamp": "2025-05-07T15:48:27.000000Z"}, {"uuid": "7b59b4ba-32bb-43f9-b4b3-fc935a02ec79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/IIV5eO4oiDl7ki6L0qjriJGCDoktseIjTfwa9caQJZaKbpk", "content": "", "creation_timestamp": "2025-09-17T15:00:06.000000Z"}, {"uuid": "21904861-8739-4688-b746-36de7c499783", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/zQWZRmlZZJlnuRGMIjUF1jUVSyI94XK8md6pgqoM1JwlMZE", "content": "", "creation_timestamp": "2025-09-23T09:00:05.000000Z"}, {"uuid": "5483926c-c499-47a7-93d9-fc3a9565ca3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/WJkCmJihJ79zoaOa8mhqqjxZN20V6pb1GGYb_QJb0gQ-mT4", "content": "", "creation_timestamp": "2025-08-28T11:00:08.000000Z"}, {"uuid": "5478932d-fb5b-479c-80fe-36effa104eb7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/NinjaSec/298", "content": "Certainly! Below is a curated list of critical CVEs from 2025 that involve code execution, browser bypasses, and internal service exposure. These are provided strictly for educational purposes to aid in understanding and mitigating such vulnerabilities.\n\n\n\ud83d\udd10 Critical CVEs from 2025 (Educational Use Only)\n\n1. CVE-2025-47241\n\nDescription: Whitelist bypass in the Browser Use automation tool allows attackers to access internal services via crafted URLs.\n\nCVSS Score: 9.3\n\nReference: \n\n\n\n2. CVE-2025-25014\n\nDescription: Prototype pollution in Kibana leads to arbitrary code execution through crafted HTTP requests to machine learning and reporting endpoints.\n\nCVSS Score: 9.1\n\nReference: \n\n\n\n3. CVE-2025-29927\n\nDescription: Authorization bypass in Next.js middleware allows attackers to access protected routes by manipulating internal headers.\n\nCVSS Score: 9.1\n\nReference: \n\n\n\n4. CVE-2025-24813\n\nDescription: \n\nCVSS Score: \n\nReference: \n\n\n\n5. CVE-2025-2783\n\nDescription: \n\nCVSS Score: High\n\nReference: \n\n\n\n6. CVE-2025-2636\n\nDescription: \n\nCVSS Score: High\n\nReference: \n\n\n\n7. CVE-2025-2505\n\nDescription: \n\nCVSS Score: High\n\nReference: \n\n\n\n8. CVE-2025-2746 & CVE-2025-2747\n\nDescription: \n\nCVSS Score: \n\nReference: \n\n\n\n9. CVE-2025-3066\n\nDescription: \n\nCVSS Score: High\n\nReference: \n\n\n\n10. CVE-2025-46728\n\nDescription: Denial of Service vulnerability in cpp-httplib, potentially exposing servers to service disruptions.\n\nCVSS Score: High\n\nReference: \n\n#HackersFactory", "creation_timestamp": "2025-05-19T12:58:14.000000Z"}, {"uuid": "b3447e18-05da-4a2a-8ee8-3cc8340bb2dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/TengkorakCyberCrewzz/1675", "content": "Ghost-Route - Ghost Route Detects If A Next JS Site Is Vulnerable To The Corrupt Middleware Bypass Bug (CVE-2025-29927) \u2013 kitploit.com\n\nTue, 22 Apr 2025 20:30:00", "creation_timestamp": "2025-04-22T16:03:33.000000Z"}, {"uuid": "b7c7ae44-2c91-4afa-a799-436af4911ac9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/ETHICALHACKERSCOMMUNITY2/4439", "content": "Ghost-Route - Ghost Route Detects If A Next JS Site Is Vulnerable To The Corrupt Middleware Bypass Bug (CVE-2025-29927)\nhttp://www.kitploit.com/2025/04/ghost-route-ghost-route-detects-if-next.html", "creation_timestamp": "2025-04-25T02:24:59.000000Z"}, {"uuid": "16d01a4c-92ca-421a-8dc8-344bd38a45b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/7c5QRMuZhKLfeM7L4MLy4V9iaRWHJ7vpszDLIJvfvXJe70k", "content": "", "creation_timestamp": "2025-08-20T07:00:11.000000Z"}, {"uuid": "a2ed4625-cea0-43c2-a63b-05dcff67dfa5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/SpiderCodeCommunity1/62", "content": "\u0641\u064a\u0647 \u0628\u0627\u062d\u062b\u064a\u0646 \u0623\u0645\u0646\u064a\u064a\u0646 (\u0631\u0634\u064a\u062f \u0648\u064a\u0627\u0633\u0631 \u0639\u0644\u0627\u0645) \u0627\u0643\u062a\u0634\u0641\u0648\u0627 \u062b\u063a\u0631\u0629 \u062e\u0637\u064a\u0631\u0629 \u0641\u064a \u0627\u0644\u0640 Middleware \u0628\u062a\u0627\u0639 Next.js \u2014 \u0648\u0627\u0644\u0644\u064a \u0647\u0648 \u0627\u0644\u0643\u0648\u062f \u0627\u0644\u0644\u064a \u0628\u064a\u062a\u0646\u0641\u0630 \u0642\u0628\u0644 \u0645\u0627 \u0627\u0644\u0637\u0644\u0628 \u064a\u0648\u0635\u0644 \u0644\u0644\u0640 API \u0623\u0648 \u0627\u0644\u0635\u0641\u062d\u0629\u060c \u0648\u0628\u064a\u0633\u062a\u062e\u062f\u0645\u0648\u0647 \u0645\u062b\u0644\u064b\u0627 \u0641\u064a \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0627\u0644\u0635\u0644\u0627\u062d\u064a\u0627\u062a.\n\n \u0627\u0644\u062b\u063a\u0631\u0629 \u0643\u0627\u0646\u062a \u0628\u0628\u0633\u0627\u0637\u0629 \u0625\u0646\u0643 \u0644\u0648 \u0636\u0641\u062a \u0647\u064a\u062f\u0631 \u0645\u0639\u064a\u0646 \u0641\u064a \u0627\u0644\u0637\u0644\u0628 (x-middleware-subrequest) \u0648\u0643\u062a\u0628\u062a \u0641\u064a\u0647 \u0627\u0633\u0645 \u0627\u0644\u0640 Middleware... \u0627\u0644\u0643\u0648\u062f \u0628\u064a\u062a\u062c\u0647\u0644 \u0627\u0644\u0637\u0644\u0628 \u062a\u0645\u0627\u0645\u064b\u0627 \u0648\u0628\u064a\u0639\u062f\u064a\u0647 \u0643\u0623\u0646 \u0645\u0641\u064a\u0634 \u0623\u064a \u062a\u062d\u0642\u0642 \u0623\u0635\u0644\u0627\u064b!\n\u064a\u0639\u0646\u064a \u062a\u0642\u062f\u0631 \u062a\u0639\u062f\u064a \u0639\u0644\u0649 \u0627\u0644\u0640 Auth\u060c \u062a\u0648\u0635\u0644 \u0644\u0635\u0641\u062d\u0627\u062a \u0645\u062d\u0645\u064a\u0629\u060c \u0623\u0648 \u062d\u062a\u0649 \u062a\u0639\u0645\u0644 XSS \u0623\u0648 \u062a\u062e\u0631\u0628 \u0627\u0644\u0643\u0627\u0634 \u0628\u062a\u0627\u0639 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0648  \u0627\u0644\u062e\u0637\u064a\u0631 \u0625\u0646 \u0643\u0644 \u062f\u0647 \u0628\u064a\u062d\u0635\u0644 \u0645\u0646 \u063a\u064a\u0631 \u0645\u0627 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u064a\u062d\u0633 \u0628\u0623\u064a \u062d\u0627\u062c\u0629 \u063a\u0644\u0637.\n\n\u0627\u0644\u062b\u063a\u0631\u0629 \u062f\u064a \u0627\u062a\u0633\u062c\u0644\u062a \u0628\u0640 CVE-2025-29927\n\u0648\u0646\u0635\u064a\u062d\u0629 \u0644\u0623\u064a \u062d\u062f \u0634\u063a\u0627\u0644 \u0628\u0640 Next.js \u062d\u062f\u0651\u062b \u0644\u0644\u0646\u0633\u062e\u0629 \u0627\u0644\u062c\u062f\u064a\u062f\u0629 \u0641\u0648\u0631\u064b\u0627\u060c \u062e\u0635\u0648\u0635\u064b\u0627 \u0644\u0648 \u0628\u062a\u0633\u062a\u062e\u062f\u0645 Middleware\n\n\n\u0634\u0631\u062d :\n\nhttps://youtu.be/AaCnBOqyvIM?si=8u4JwWkFObQLfIle\n\u0645\u0635\u062f\u0631 :\nhttps://www.facebook.com/share/p/1AFN1pgKUV/", "creation_timestamp": "2025-03-24T18:05:38.000000Z"}, {"uuid": "69d69b00-ae00-4ac1-9ecf-d7246542405d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/ETHICALHACKERSCOMMUNITY2/4441", "content": "A Python (https://www.kitploit.com/search/label/Python) script to check Next.js sites for corrupt middleware (https://www.kitploit.com/search/label/Middleware) vulnerability (https://www.kitploit.com/search/label/Vulnerability) (CVE-2025-29927). The corrupt middleware vulnerability allows an attacker to bypass authentication (https://www.kitploit.com/search/label/Authentication) and access protected routes by send a custom header x-middleware-subrequest.  Next JS versions affected:  - 11.1.4 and up  [!WARNING] This tool is for educational purposes only. Do not use it on websites or systems you do not own or have explicit permission to test. Unauthorized testing may be illegal and unethical.\u00a0 Installation Clone the repo git clone https://github.com/takumade/ghost-route.git\ncd ghost-route\n Create and activate virtual environment python -m venv .venv\nsource .venv/bin/activate\n Install dependencies pip install -r requirements.txt\n Usage python ghost-route.py   \n  : Base URL of the Next.js site (e.g., https://example.com) : Protected path to test (default: /admin) : Show response headers (default: False)  Example Basic Example python ghost-route.py https://example.com /admin\n Show Response Headers (https://www.kitploit.com/search/label/Headers) python ghost-route.py https://example.com /admin True\n License MIT License Credits  CVE-2025-29927 (https://nvd.nist.gov/vuln/detail/CVE-2025-29927) Next.js and the corrupt middleware: the authorizing artifact (https://zhero-web-sec.github.io/research-and-things/nextjs-and-the-corrupt-middleware) Rachid A. (https://x.com/zhero___) Yasser Allam (https://x.com/inzo____) \n\nDownload Ghost-Route (https://github.com/takumade/ghost-route)", "creation_timestamp": "2025-04-22T16:22:12.000000Z"}, {"uuid": "fa5c6e27-1fea-42e0-b18c-0ba45ec5dab6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/cybersecplayground/149", "content": "\ud83d\udea8 CVE-2025-29927: Next.js Middleware Bypass Vulnerability \ud83d\udea8\n\n\u26a0\ufe0f A serious vulnerability in Next.js Middleware allows attackers to bypass security mechanisms and exploit vulnerable systems, affecting millions of users!\n\n\ud83d\udd39 Proof of Concept (PoC):\n\n\ud83d\udd25 PoC Repository:\n\n \u2022 CVE-2025-29927\n\n\ud83c\udfaf Over 5 Million Results found on FOFA over the last year!\n\nQueries:\n\n \u2022 HUNTER:\n\nproduct.name=\"Next.js\"\n\n \u2022 FOFA:\n\nproduct=\"NEXT.JS\"\n\n \u2022 SHODAN:\n\nNext.js\n\n\ud83d\udd16 For More Information:\n\ud83d\udcd6 \nCVE-2025-29927 Blog Post\n\n\u2e3b\n\n\ud83d\udca5 Pro Tip: Check your Next.js applications for any unpatched versions of Middleware that could be vulnerable to this bypass!\n\n\u26a0\ufe0f For educational purposes only. Always test responsibly! \u26a0\ufe0f\n\n\ud83d\ude80 Join @CyberSecPlayground for more bug bounty tips, vulnerability details, and exclusive tools!\n\n\ud83d\udd17 Join Now\n\n\ud83d\udce2 #OSINT #FOFA #CyberSecurity #Vulnerability #CVE2025 #BugBounty #NextJS #CyberSecPlayground", "creation_timestamp": "2025-03-25T12:23:24.000000Z"}, {"uuid": "a5014a98-c726-4643-98dd-a9fbb2a0c5a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/ujDzFFrET3ZH5xQdQMIqDWCAd6Ask0YbS48UdaKK1nCHgf0", "content": "", "creation_timestamp": "2025-07-29T21:00:04.000000Z"}, {"uuid": "14df9709-1859-47f7-b61b-1314497c7945", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/448", "content": "Top Security News for Today\n\nDetect NetxJS CVE-2025-29927 efficiently and at scale  \nhttps://www.reddit.com/r/netsec/comments/1jlqota/detect_netxjs_cve202529927_efficiently_and_at/\n\nAIs as Trusted Third Parties  \nhttps://www.schneier.com/blog/archives/2025/03/ais-as-trusted-third-parties.html\n\nVanHelsing Ransomware: What You Need To Know  \nhttps://www.tripwire.com/state-of-security/vanhelsing-ransomware-what-you-need-know\n\nA Deep Dive into Water Gamayun\u2019s Arsenal and Infrastructure  \nhttps://www.trendmicro.com/en_us/research/25/c/deep-dive-into-water-gamayun.html\n\nFriday Squid Blogging: Squid Werewolf Hacking Group  \nhttps://www.schneier.com/blog/archives/2025/03/friday-squid-blogging-squid-werewolf-hacking-group.html\n\nPayload-Aware Intrusion Detection with CMAE and Large Language Models  \nhttps://arxiv.org/abs/2503.20790\n\nFollow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2025-03-29T09:30:18.000000Z"}, {"uuid": "50ee1c8e-929c-46e6-91c8-5fa68249b69d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/444", "content": "Top Security News for Today\n\nBypassing Detections with Command-Line Obfuscation  \nhttps://www.reddit.com/r/netsec/comments/1jimof1/bypassing_detections_with_commandline_obfuscation/\n\nDoing the Due Diligence: Analyzing the Next.js Middleware Bypass (CVE-2025-29927)  \nhttps://www.reddit.com/r/netsec/comments/1jim7sp/doing_the_due_diligence_analyzing_the_nextjs/\n\nCross-Border Data Compliance: Navigating Public Security Regulations in a Connected World  \nhttps://www.tripwire.com/state-of-security/cross-border-data-compliance-navigating-public-security-regulations-connected\n\nMore Countries are Demanding Back-Doors to Encrypted Apps  \nhttps://www.schneier.com/blog/archives/2025/03/more-countries-are-demanding-back-doors-to-encrypted-apps.html\n\n24th March \u2013 Threat Intelligence Report  \nhttps://research.checkpoint.com/2025/24th-march-threat-intelligence-report/\n\nTakumi, the AI Security Engineer | GMO Flatt Security Inc.  \nhttps://www.reddit.com/r/netsec/comments/1jis8zi/takumi_the_ai_security_engineer_gmo_flatt/\n\nMicrosoft unveils Microsoft Security Copilot agents and new protections for AI  \nhttps://www.microsoft.com/en-us/security/blog/2025/03/24/microsoft-unveils-microsoft-security-copilot-agents-and-new-protections-for-ai/\n\nRust for Malware Development  \nhttps://bishopfox.com/blog/rust-for-malware-development\n\nFollow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2025-03-25T09:30:18.000000Z"}, {"uuid": "541b4974-3b4f-4199-9e4d-fdcf72505e4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/wRnl8ntDAGY7eTPUGTtFqIuU6Tsi3Eou0FYkl74XLLXvV2Q", "content": "", "creation_timestamp": "2025-07-27T21:00:04.000000Z"}, {"uuid": "d2cc8cc7-08a6-4973-aa53-6fdf0fabd70a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/443", "content": "Top Security News for Today\n\nAfter a decade of open source security educational tools (SecGen), we've launched a hosted platform, Hacktivity  \nhttps://www.reddit.com/r/netsec/comments/1jhvszk/after_a_decade_of_open_source_security/\n\nVanHelsing, new RaaS in Town  \nhttps://research.checkpoint.com/2025/vanhelsing-new-raas-in-town/\n\nCosmos-Reason1: From Physical Common Sense To Embodied Reasoning  \nhttps://arxiv.org/abs/2503.15558\n\nTowards Unified Latent Space for 3D Molecular Latent Diffusion Modeling  \nhttps://arxiv.org/abs/2503.15567\n\nPrivateers Reborn: Digital Letters of Marque  \nhttps://www.reddit.com/r/netsec/comments/1jibf18/privateers_reborn_digital_letters_of_marque/\n\nDoing the Due Diligence: Analyzing the Next.js Middleware Bypass (CVE-2025-29927)  \nhttps://www.reddit.com/r/netsec/comments/1jim7sp/doing_the_due_diligence_analyzing_the_nextjs/\n\nFollow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2025-03-24T09:30:25.000000Z"}, {"uuid": "5b164ab8-bd48-4190-b8ad-fed325e02b34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/EYkASGxj3Tiuz3kIHRMz13gpRd2GwQ5wKmXB5D8I7ZTChs4", "content": "", "creation_timestamp": "2025-07-23T21:00:04.000000Z"}, {"uuid": "4dd2a648-1181-4f84-a2a8-b818edafdf11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/RbO8HOpVHK90gpne9sqXUdFcGv84T1I4a-t3fo6sMJ1-Pgs", "content": "", "creation_timestamp": "2025-07-15T07:00:11.000000Z"}, {"uuid": "d497a359-57ea-4b2f-ad9a-1e74e9de4e8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/738jfAXXC3LWOZnsDd9qNuo1W8BYdUA_U_0UHdIR_wlIZ1A", "content": "", "creation_timestamp": "2025-09-23T15:00:06.000000Z"}, {"uuid": "faa4a134-0e42-4de2-9e75-76f27cb0f89a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/alm2jq9O8YYx6qnzF2eh-OesfBkG_Ys-e6brm3R0S-yK0DU", "content": "", "creation_timestamp": "2025-06-30T11:00:09.000000Z"}, {"uuid": "8e3dc2aa-a539-450f-94e7-60f020e36815", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/hGK5FcDNylh4RCIfn73xm0ZtZkhj8XnRr-h94Lf4hKlBbzg", "content": "", "creation_timestamp": "2025-07-15T03:00:05.000000Z"}, {"uuid": "e5ec522f-7952-432f-9166-d21fc1407f00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/uWnpZChKZV5yuE-QOEkc-gVigY28ff3y_u3cMKv3pSLH4Sk", "content": "", "creation_timestamp": "2025-07-14T21:00:04.000000Z"}, {"uuid": "01b9cd6e-2126-49f8-977c-f1438340c300", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/ptswarm/234", "content": "Next.js and the corrupt middleware: the authorizing artifact\n\n\ud83d\udc64 by Rachid Allam & Yasser Allam\n\nResearchers have discovered a critical vulnerability in Next.js, a popular framework for building web applications. The flaw allows attackers to bypass middleware responsible for request processing, including authentication and path rewrites.\n\nBy adding the x-middleware-subrequest header with a specific value, an attacker can completely ignore middleware execution, gaining unauthorized access to protected resources. Additionally, the vulnerability can be exploited for denial-of-service (DoS) attacks by poisoning the cache, leading to service disruption.\n\nMany versions of Next.js are affected, making this a widespread security concern.\n\n\ud83d\udcdd Contents:\n\u25cf The Next.js middleware\n\u25cf The authorizing artifact artifact: old code, 0ld treasure\n    \u2022 Execution order and middlewareInfo.name\n\u25cf The authorizing artifact: nostalgia has its charm, but living in the moment is better\n    \u2022 /src directory\n    \u2022 Max recursion depth\n\u25cf Exploits\n    \u2022 Authorization/Rewrite bypass\n    \u2022 CSP bypass\n    \u2022 DoS via Cache-Poisoning (what?)\n    \u2022 Clarification\n\u25cf Security Advisory - CVE-2025-29927\n\u25cf Disclaimer\n\u25cf Conclusion\n\nhttps://zhero-web-sec.github.io/research-and-things/nextjs-and-the-corrupt-middleware", "creation_timestamp": "2025-03-24T06:06:47.000000Z"}, {"uuid": "ccd8eef6-a9a9-4626-93ef-36214619fce4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/u6h4hxOLEGJo8756pzIINeRXaaCHoOOF066El4a2wQI-Fp0", "content": "", "creation_timestamp": "2025-06-08T03:00:06.000000Z"}, {"uuid": "498a64bd-c123-4743-b43b-4ba78db44204", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/RUsue10hp_19qxxxnszqstv3dPyWvXCGTsW2FWqa6-VcIzU", "content": "", "creation_timestamp": "2025-06-08T11:00:06.000000Z"}, {"uuid": "06fa514f-5258-49c3-bc73-4b7100df7d0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/kasperskyb2b/1674", "content": "\u27a1\ufe0f \u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f APT \u0438 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0418\u0411 \u0437\u0430 \u043d\u0435\u0434\u0435\u043b\u044e\n\n\ud83d\udca1 \u041e\u0442\u0447\u0451\u0442 \u043e \u0440\u0435\u0430\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0438 \u043d\u0430 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u044b \u0432 2024 \u0433\u043e\u0434\u0443: \u0434\u0435\u0442\u0430\u043b\u044c\u043d\u044b\u0439 \u0440\u0430\u0437\u0431\u043e\u0440 \u043f\u0440\u043e\u0444\u0438\u043b\u044f \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0445 \u0438 \u0436\u0435\u0440\u0442\u0432, \u0438\u0437\u043b\u044e\u0431\u043b\u0435\u043d\u043d\u044b\u0445 \u0442\u0430\u043a\u0442\u0438\u043a, \u0442\u0435\u0445\u043d\u0438\u043a \u0438 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432. \n\n\ud83d\udd35\u041f\u043e\u0441\u0442\u0443\u043f\u0430\u044e\u0442 \u043d\u043e\u0432\u044b\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 GitHub-\u043f\u0440\u043e\u0446\u0435\u0441\u0441 tj-actions/changed-file, \u0441\u0443\u0434\u044f \u043f\u043e \u0432\u0441\u0435\u043c\u0443, \u044d\u0442\u043e \u0431\u044b\u043b\u043e \u043b\u0438\u0448\u044c \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u044b\u043c \u0437\u0432\u0435\u043d\u043e\u043c \u0432 \u0430\u0442\u0430\u043a\u0435 \u043d\u0430 Coinbase. \u0427\u0442\u043e \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u043e, \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435, \u043f\u043e\u0445\u043e\u0436\u0435, \u0438\u0437 \u0415\u0432\u0440\u043e\u043f\u044b (\u0430 \u043d\u0435 \u043a\u0430\u043a \u0432\u044b \u043f\u043e\u0434\u0443\u043c\u0430\u043b\u0438, \u043f\u0440\u043e\u0447\u0438\u0442\u0430\u0432 \u0441\u043b\u043e\u0432\u043e Coinbase).\n\n\u26aa\ufe0f\u041b\u0430\u043d\u0434\u0448\u0430\u0444\u0442 \u0443\u0433\u0440\u043e\u0437 \u0434\u043b\u044f \u0441\u0438\u0441\u0442\u0435\u043c \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u043e\u0439 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0430\u0446\u0438\u0438. \u0412 \u0446\u0435\u043b\u043e\u043c \u043f\u043e \u043c\u0438\u0440\u0443 \u0432 4 \u043a\u0432\u0430\u0440\u0442\u0430\u043b\u0435 2024 \u0447\u0438\u0441\u043b\u043e \u0430\u0442\u0430\u043a\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u043a\u043e\u043c\u043f\u044c\u044e\u0442\u0435\u0440\u043e\u0432 \u0410\u0421\u0423 \u0422\u041f \u043d\u0435\u0437\u043d\u0430\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0441\u043d\u0438\u0437\u0438\u043b\u043e\u0441\u044c, \u043d\u043e \u0432 8 \u0440\u0435\u0433\u0438\u043e\u043d\u0430\u0445, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0420\u043e\u0441\u0441\u0438\u044e, \u043e\u0442\u043c\u0435\u0447\u0435\u043d \u0440\u043e\u0441\u0442.\n\n\ud83d\udfe1\u041d\u043e\u0432\u0430\u044f \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f APT Mirror Face/Earth Kasha/APT10 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u0430 \u043d\u0430 \u044f\u043f\u043e\u043d\u0441\u043a\u0438\u0435 \u0433\u043e\u0441\u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0438 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0432 \u0441\u0444\u0435\u0440\u0435 \u043a\u043e\u0441\u043c\u043e\u0441\u0430, \u043a\u043e\u043d\u0441\u0430\u043b\u0442\u0438\u043d\u0433\u0430 \u0438 \u0421\u041c\u0418. \u0418\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442\u0441\u044f \u0431\u044d\u043a\u0434\u043e\u0440 Uppercut/Anel \u0438 AsyncRAT.\n\n\ud83d\udd35\u0413\u0440\u0443\u043f\u043f\u0430 UAT-5918, \u043f\u0435\u0440\u0435\u0441\u0435\u043a\u0430\u044e\u0449\u0430\u044f\u0441\u044f \u0441 Volt Typhoon/Flax Typhoon/Earth Estries, \u0430\u0442\u0430\u043a\u0443\u0435\u0442 \u0442\u0430\u0439\u0432\u0430\u043d\u044c\u0441\u043a\u0438\u0435 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0434\u043b\u044f \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u0434\u043e\u043b\u0433\u043e\u0441\u0440\u043e\u0447\u043d\u043e\u0433\u043e \u0448\u043f\u0438\u043e\u043d\u0441\u043a\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0435\u0442\u0435\u0432\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0435. \n\n\ud83d\udd35\u0420\u0430\u0437\u0431\u043e\u0440 \u0441\u043b\u043e\u0436\u043d\u043e\u0433\u043e \u0431\u044d\u043a\u0434\u043e\u0440\u0430 Betruger, \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u0435\u043c\u043e\u0433\u043e \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u043e\u0439 RansomHub.\n\n\ud83d\udfe2\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2025-23120 \u0432 Veeam Backup & Replication \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a RCE. \n\n\ud83d\udfe2\u0427\u0442\u043e \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0445\u0443\u0436\u0435 \u00ab\u0443\u043c\u043d\u043e\u0433\u043e \u043b\u0438\u0446\u0435\u043d\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f\u00bb? \u0422\u043e\u043b\u044c\u043a\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0443\u0442\u0438\u043b\u0438\u0442\u0435 \u0443\u043c\u043d\u043e\u0433\u043e \u043b\u0438\u0446\u0435\u043d\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f, \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u0435\u0441\u043b\u0438 \u044d\u0442\u043e Cisco.\n\n\ud83d\udfe3\u041d\u0430 \u0432\u044b\u0445\u043e\u0434\u043d\u044b\u0445 \u0432\u044b\u0448\u043b\u043e \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0435 \u043e \u043d\u0435\u043f\u0440\u0438\u044f\u0442\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-29927 \u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0430 Next.js, \u043e\u0431\u0445\u043e\u0434 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0441 CVSS 9.1. \u0412 Shodan \u0441\u0432\u0435\u0442\u0438\u0442\u0441\u044f 300 \u0442\u044b\u0441\u044f\u0447 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0441\u0430\u0439\u0442\u043e\u0432.  \n\n\ud83d\udd35\u0414\u0440\u0435\u0432\u043d\u0438\u0439 \u043e\u0431\u0440\u0430\u0437\u0435\u0446 ransomware Albabat \u043d\u0435\u043e\u0436\u0438\u0434\u0430\u043d\u043d\u043e \u043e\u0431\u0437\u0430\u0432\u0451\u043b\u0441\u044f \u0432\u0435\u0440\u0441\u0438\u044f\u043c\u0438 \u0434\u043b\u044f macOS \u0438 Linux.\n\n\ud83d\udfe3\u041e\u0442\u0447\u0451\u0442 \u043e \u0434\u0435\u044f\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u0438 \u0430\u0440\u0442\u0438\u0441\u0442\u043e\u0432 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 BlackLock, \u0440\u0430\u043d\u0435\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 \u043a\u0430\u043a ElDorado.\n\n\ud83d\udfe3\u041c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u0430\u044f \u0441\u0435\u0442\u044c \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0441\u0430\u0439\u0442\u043e\u0432 WordPress \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u0441 2016 \u0433\u043e\u0434\u0430 \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u04212 \u0438 TDS. \u0410\u0432\u0442\u043e\u0440\u044b \u044d\u0442\u043e\u0433\u043e \u0431\u043e\u0442\u043d\u0435\u0442\u0430, \u043d\u0430\u0437\u0432\u0430\u043d\u043d\u043e\u0433\u043e DollyWay, \u0434\u0430\u0436\u0435 \u043f\u0430\u0442\u0447\u0430\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043d\u0430 \u00ab\u0441\u0432\u043e\u0438\u0445\u00bb \u0441\u0430\u0439\u0442\u0430\u0445 \u0438 \u0432\u044b\u0447\u0438\u0449\u0430\u044e\u0442 \u0412\u041f\u041e \u043a\u043e\u043d\u043a\u0443\u0440\u0435\u043d\u0442\u043e\u0432.\n\n\ud83d\udfe2\u041d\u043e\u0432\u044b\u0439 \u0438\u043d\u0444\u043e\u0441\u0442\u0438\u043b\u0435\u0440 SVC, \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u0447\u0435\u0440\u0435\u0437 \u0444\u0438\u0448\u0438\u043d\u0433 \u0441 \u044f\u043d\u0432\u0430\u0440\u044f, \u0432\u043e\u0440\u0443\u0435\u0442 \u0432\u0441\u0451 \u0447\u0442\u043e \u043e\u0431\u044b\u0447\u043d\u043e, \u043f\u043b\u044e\u0441 \u0434\u0430\u043d\u043d\u044b\u0435 \u0438\u0437 \u043f\u0440\u0438\u0432\u0430\u0442\u043d\u044b\u0445 \u043c\u0435\u0441\u0441\u0435\u043d\u0434\u0436\u0435\u0440\u043e\u0432.\n\n\ud83d\udfe3\u0410 Arcane stealer \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u043f\u0440\u0435\u0438\u043c\u0443\u0449\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u043e \u0447\u0435\u0440\u0435\u0437 Youtube. \n\n\u2733\ufe0f \u041d\u0435 \u0441\u043e\u0432\u0441\u0435\u043c \u043f\u043e \u043f\u0440\u043e\u0444\u0438\u043b\u044e \u043a\u0430\u043d\u0430\u043b\u0430, \u043d\u043e \u043f\u0440\u043e\u0439\u0442\u0438 \u043c\u0438\u043c\u043e \u043d\u0435 \u043c\u043e\u0436\u0435\u043c: \u0433\u043e\u0434 \u043d\u0430\u0437\u0430\u0434 \u0443 Keenetic \u0443\u0442\u0435\u043a\u043b\u0438 \u0434\u0430\u043d\u043d\u044b\u0435 \u043c\u043e\u0431\u0438\u043b\u044c\u043d\u043e\u0433\u043e \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f \u0438 \u0432\u043e\u0442 \u043d\u0430\u043a\u043e\u043d\u0435\u0446 \u043e\u043d\u0438 \u0440\u0435\u0448\u0438\u043b\u0438 \u0441\u043e\u043e\u0431\u0449\u0438\u0442\u044c \u043e\u0431 \u044d\u0442\u043e\u043c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c. \u041d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u0445\u0440\u0430\u043d\u0438\u0442\u0441\u044f \u043e\u0447\u0435\u043d\u044c \u043c\u043d\u043e\u0433\u043e \u0434\u0430\u043d\u043d\u044b\u0445, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043f\u0430\u0440\u043e\u043b\u0438 Wi-Fi \u0438 \u043a\u043b\u044e\u0447\u0438 VPN.\n\n#\u043d\u043e\u0432\u043e\u0441\u0442\u0438 #APT #\u0434\u0430\u0439\u0434\u0436\u0435\u0441\u0442 #\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 @\u041f2\u0422", "creation_timestamp": "2025-03-24T09:54:25.000000Z"}, {"uuid": "dfaee3fb-3d99-462c-8a17-a05b34933d8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/cvedetector/21921", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-30218 - Next.js Cross-Origin Request Exposure\", \n  \"Content\": \"CVE ID : CVE-2025-30218 \nPublished : April 2, 2025, 10:15 p.m. | 20\u00a0minutes ago \nDescription : Next.js is a React framework for building full-stack web applications. To mitigate CVE-2025-29927, Next.js validated the x-middleware-subrequest-id which persisted across multiple incoming requests. However, this subrequest ID is sent to all requests, even if the destination is not the same host as the Next.js application. Initiating a fetch request to a third-party within Middleware will send the x-middleware-subrequest-id to that third party. This vulnerability is fixed in 12.3.6, 13.5.10, 14.2.26, and 15.2.4. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-03T01:01:29.000000Z"}, {"uuid": "d9ac2f39-24f6-4079-929a-8158c947c1bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/16716", "content": "Proof-of-Concept Exploit: Next.js Middleware (CVE-2025-29927)\n\nCredit: youtube.com/@gotr00t0day/", "creation_timestamp": "2025-05-02T00:35:14.000000Z"}, {"uuid": "7cfcf1ef-c975-49d7-a17a-fb85c7b03f5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/MalaysiaHacktivistz/11765", "content": "Ghost-Route - Ghost Route Detects If A Next JS Site Is Vulnerable To The Corrupt Middleware Bypass Bug (CVE-2025-29927) \u2013 kitploit.com\n\nTue, 22 Apr 2025 20:30:00", "creation_timestamp": "2025-04-22T18:03:33.000000Z"}, {"uuid": "eeb5ce42-4b01-43f7-a017-4c45325cf06b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/cvedetector/20824", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-29927 - Next.js Authorization Bypass in Middleware\", \n  \"Content\": \"CVE ID : CVE-2025-29927 \nPublished : March 21, 2025, 3:15 p.m. | 1\u00a0hour, 28\u00a0minutes ago \nDescription : Next.js is a React framework for building full-stack web applications. Prior to 14.2.25 and 15.2.3, it is possible to bypass authorization checks within a Next.js application, if the authorization check occurs in middleware. If patching to a safe version is infeasible, it is recommend that you prevent external user requests which contain the x-middleware-subrequest header from reaching your Next.js application. This vulnerability is fixed in 14.2.25 and 15.2.3. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-21T18:29:15.000000Z"}, {"uuid": "a1bf59d9-b49e-43fa-9309-f6336deaa56d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/RI-_21kCug8goZ0C3JnPo37PWj4aEq3YCcYWRw-aWosNv28", "content": "", "creation_timestamp": "2025-03-25T13:24:16.000000Z"}, {"uuid": "66ffc9b1-6e53-42aa-bc70-bebc7552ca42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/ViralCyber/11860", "content": "#CVE-2025-29927 #Bypass_Authorization #Node.js\n\u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc Bypass Authorization \u06a9\u0647 \u0628\u0631\u0627\u06cc Next.js \u062f\u0631 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc \u0632\u06cc\u0631 13.5.6 \u0648 14.2.25 \u0648 15.2.3 \u0622\u0645\u0627\u062f\u0647 \u0627\u0633\u062a.\n\n\u0645\u0627\u062c\u0631\u0627 \u0627\u0632 \u0627\u06cc\u0646 \u0642\u0631\u0627\u0631 \u06a9\u0647 Middleware \u0647\u0627\u06cc \u0637\u0631\u0627\u062d\u06cc \u0634\u062f\u0647 \u062f\u0631 Next.js \u0627\u0645\u06a9\u0627\u0646 \u0627\u0639\u0645\u0627\u0644 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0631 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u062f\u0631\u06cc\u0627\u0641\u062a\u06cc \u0631\u0627 \u062f\u0627\u0631\u0646\u062f\u060c \u0642\u0628\u0644 \u0627\u0632 \u0627\u06cc\u0646\u06a9\u0647 \u067e\u0627\u0631\u0633\u0631 \u06a9\u062f \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0631\u0648 \u062a\u062d\u0648\u06cc\u0644 \u0628\u06af\u06cc\u0631\u0647.\n\n\u062f\u0648\u0631 \u0632\u062f\u0646 \u0645\u06a9\u0627\u0646\u06cc\u0632\u0645 \u06a9\u0646\u062a\u0631\u0644 \u0633\u0637\u062d \u062f\u0633\u062a\u0631\u0633\u06cc \u06cc\u0627 Authorization \u0632\u0645\u0627\u0646\u06cc \u062f\u0648\u0631 \u0632\u062f\u0647 \u0645\u06cc\u0634\u0648\u062f \u06a9\u0647 \u062f\u0631 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0627\u0631\u0633\u0627\u0644\u06cc Header \u0628\u0627 \u0646\u0627\u0645 x-middleware-subrequest \u062a\u0646\u0638\u06cc\u0645 \u0634\u062f\u0647 \u06a9\u0647 \u0628\u062f\u0627\u0646 \u0645\u0639\u0646\u06cc \u0627\u0633\u062a \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0628\u0647 Middleware \u062a\u062d\u0648\u06cc\u0644 \u062f\u0627\u062f\u0647 \u0634\u0648\u062f \u0648 \u062f\u0631 \u0634\u0631\u0637 \u062e\u0637 707 \u0627\u0648\u0645\u062f\u0647 \u06a9\u0647 \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u0646\u0627\u0645 middleware \u062f\u0631 \u0622\u0631\u0627\u06cc\u0647 subrequests \u0642\u0631\u0627\u0631 \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u0647 \u067e\u0627\u0633\u062e \u0627\u0632 \u0646\u0648\u0639 ()NextResponse.next \u0628\u0631\u06af\u0634\u062a \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0648 \u0639\u0645\u0644\u06cc\u0627\u062a \u0647\u0645\u0632\u0645\u0627\u0646 \u0628\u0627 ()Promise.resolve \u0627\u062f\u0627\u0645\u0647 \u067e\u06cc\u062f\u0627 \u062e\u0648\u0627\u0647\u062f \u06a9\u0631\u062f.\n\n\u0627\u06af\u0631 Header \u0628\u0627 \u0646\u0627\u0645 x-middleware-subrequest \u062a\u0639\u0631\u06cc\u0641 \u0634\u062f\u0647 \u0628\u0627\u0634\u0647\u060c Middleware \u0628\u0631\u0631\u0633\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0648 \u0646\u0627\u062f\u06cc\u062f\u0647 \u06af\u0631\u0641\u062a\u0647 \u0648 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0631\u0648 \u0628\u0647 \u0645\u0642\u0635\u062f \u0627\u0635\u0644\u06cc \u0647\u062f\u0627\u06cc\u062a \u062e\u0648\u0627\u0647\u062f \u06a9\u0631\u062f \u06a9\u0647 \u0627\u06cc\u0646\u062c\u0627 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0631\u062e \u062e\u0648\u0627\u0647\u062f \u062f\u0627\u062f.\n\n\u0645\u0642\u062f\u0627\u0631 MiddlewareInfo.name \u0645\u06cc\u062a\u0648\u0646\u0647 \u0628\u062f\u0633\u062a \u0628\u06cc\u0627\u062f \u0648 \u0645\u0633\u06cc\u0631 Middleware \u0627\u0645\u06a9\u0627\u0646 \u062a\u0634\u062e\u06cc\u0635 \u0631\u0648 \u062f\u0627\u0634\u062a\u0647 \u0686\u0631\u0627 \u06a9\u0647 \u062f\u0631 \u0645\u0633\u06cc\u0631\u06cc\u0627\u0628\u06cc pages \u0648 \u0628\u0627 \u0646\u0627\u0645 middleware.ts_ \u0642\u0631\u0627\u0631 \u062f\u0627\u0634\u062a\u0647 \u0627\u0633\u062a.\n\nEXP\n@Unk9vvN", "creation_timestamp": "2025-03-24T15:21:04.000000Z"}, {"uuid": "5993d350-f10b-4fa4-b5e6-b6c81520d0f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "Telegram/F5kfGmelK0qA2VA-l_g5edkStVsw7pcVVKt4kLH4OQRnxQ", "content": "", "creation_timestamp": "2025-03-24T11:31:14.000000Z"}, {"uuid": "3b9906a8-ed60-4c87-99e9-2c19aa37bdfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/MalaysiaHacktivistz/3553", "content": "Ghost-Route - Ghost Route Detects If A Next JS Site Is Vulnerable To The Corrupt Middleware Bypass Bug (CVE-2025-29927) \u2013 kitploit.com\n\nTue, 22 Apr 2025 20:30:00", "creation_timestamp": "2025-04-22T18:03:33.000000Z"}, {"uuid": "5eccbbd4-e58d-4e21-b128-b77b971d74c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/TengkorakCyberCrewzz/30201", "content": "Ghost-Route - Ghost Route Detects If A Next JS Site Is Vulnerable To The Corrupt Middleware Bypass Bug (CVE-2025-29927) \u2013 kitploit.com\n\nTue, 22 Apr 2025 20:30:00", "creation_timestamp": "2025-04-22T18:03:33.000000Z"}, {"uuid": "cb284a98-0298-41b9-9eb0-ee49c843c1a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/otAoaF9HglqRlYurEeGfVVpj7vUDLPFmRTv87nx_aQ9uiE0", "content": "", "creation_timestamp": "2025-03-27T04:00:06.000000Z"}, {"uuid": "12b6dc3e-b167-4efb-a2e9-f7b772aacc4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1632", "content": "CVE-2025-29927 Proof of Concept\n\nhttps://github.com/aydinnyunus/CVE-2025-29927", "creation_timestamp": "2025-03-26T17:24:22.000000Z"}, {"uuid": "defccb54-71b1-45e6-8504-35bcb9cbe9de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1630", "content": "Next.js Middleware Authorization Bypass (CVE-2025-29927)\n\nhttps://github.com/vulhub/vulhub/tree/master/next.js/CVE-2025-29927", "creation_timestamp": "2025-03-25T13:43:34.000000Z"}, {"uuid": "a1448f87-1d22-458a-bf84-ce24fd04f66e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/bsHc6hYCGodfaBywPUDWD_0bkK7FEhNfpE-j_IqFjWAY4yA", "content": "", "creation_timestamp": "2025-03-28T16:00:11.000000Z"}, {"uuid": "dd046559-a81b-4603-bc8d-5ee8f8f80211", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/aPCPdIPGkODZoxCaDJ8O34mKLW0JTsj39l_jw_IG9BQaA-s", "content": "", "creation_timestamp": "2025-03-28T10:00:05.000000Z"}, {"uuid": "f4785089-63d6-4fa3-8550-5223901b405d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/TWpQ0c_C6YvvOFPQCx9RaG8kEfWk1VJPeSRhUGPNV2cSPY0", "content": "", "creation_timestamp": "2025-04-02T23:00:06.000000Z"}, {"uuid": "04578fa0-94f7-4873-9809-be84277e42a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/IpSkdng-DvuBirFh-8nYsY3OgxKRFd_quSrS72XmwTlTwLs", "content": "", "creation_timestamp": "2025-03-28T00:00:06.000000Z"}, {"uuid": "015e4265-7055-423c-9979-aee833cc5534", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/YrbI_dt818NPMUxxPwmqr_pW9uiKUjv8OvWWBWCo12-kqN4", "content": "", "creation_timestamp": "2025-04-02T17:00:12.000000Z"}, {"uuid": "efe43d57-03f3-440a-bafb-41ed88a8fa2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/kXZvd58izIQiU_MwCLyFKxklQIm_6IOm5Js_A1mT7KUydck", "content": "", "creation_timestamp": "2025-04-02T11:00:05.000000Z"}, {"uuid": "6ab58c13-e97f-4a38-b361-5fcfbe326161", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/b6Jl7wzygae-BXh-Se_wt-DVRMooLLWTuD3fD59x1efx7TE", "content": "", "creation_timestamp": "2025-03-23T04:00:07.000000Z"}, {"uuid": "805f386a-0a55-4a92-923b-e03341fdb273", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/qjcsrLnNv5S51XdLRJunsGHGk2KwaV-0XadKXvz_YUZIu4A", "content": "", "creation_timestamp": "2025-03-23T00:00:09.000000Z"}, {"uuid": "925215d0-6d8b-459e-a1a2-a1bcfdfadb5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/xrSOLi_Ndmn0wR_FEbBdlzmDVMAv25t2d-NjmhGGLeu57TM", "content": "", "creation_timestamp": "2025-04-02T05:00:06.000000Z"}, {"uuid": "0810196c-59c8-4eec-bed5-81dfa56a7555", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/vUGMvstSYOoUDxx-O4QTLDAV49BnFrwaRby9_jbBdmSD8WM", "content": "", "creation_timestamp": "2025-03-22T22:00:06.000000Z"}, {"uuid": "c1495cf1-a8cd-403c-8725-ebfdb1df12d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/xcGRNH_EwORElMZ3bAgEoqPH6J5Y6svZZQkqCrYpVnROx_w", "content": "", "creation_timestamp": "2025-03-30T11:00:06.000000Z"}, {"uuid": "10f507ca-41d3-4e9e-a982-6d98eb71a7f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/XNLx_ZMfaYJPSssBYVCxDS29QMLR-1ADDL8FdocgP4IFZM4", "content": "", "creation_timestamp": "2025-04-03T09:00:06.000000Z"}, {"uuid": "e2dcc89f-669f-43e9-b739-444a7013883d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/WizMHfr-zYUvVJaO53zTNz7NT7awFeLg0wepLTamJ53Bvuo", "content": "", "creation_timestamp": "2025-03-29T20:00:07.000000Z"}, {"uuid": "5182835a-aa25-4d7a-9b48-77dfe375dad9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/gptxcG5Jvg83wR56zKKTs8fGBMXLE7PNQ-HCnd7IEVmsKx8", "content": "", "creation_timestamp": "2025-04-05T21:00:06.000000Z"}, {"uuid": "36d7d6a9-4671-4fd8-b5b5-406c67f6522f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/1FU9JKkDtGpcne3Ep4nL0vHVyNGozrk1LcnkQn-O_2rRjKw", "content": "", "creation_timestamp": "2025-03-27T22:00:06.000000Z"}, {"uuid": "fc50c28c-a72f-45c0-8334-b1ffe7004ce0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/0LxSJuadzx1gFt5LjOzQKudcVVss8Xi_oBXbI34BaDEWNfs", "content": "", "creation_timestamp": "2025-03-27T16:00:07.000000Z"}, {"uuid": "915d0a1a-a590-4757-8905-820caf00fb9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/dTUgk8GObROOjGU8Vy5Hdn1MXIpr9wUQqGef_7FiGWlqFgw", "content": "", "creation_timestamp": "2025-03-27T10:00:06.000000Z"}, {"uuid": "c4f38995-9ed8-456e-a005-c0b1982e1fe4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/u4QW-PhXvOdEz-DPSjg467lSb3twIBu6R_ivSGfCYMMnQBw", "content": "", "creation_timestamp": "2025-03-26T22:00:05.000000Z"}, {"uuid": "aba53be4-1249-4276-b87a-82c643bc1e9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/S6VJZCEtnsvYjBlLt3__8k7cd1SGolH21EEfYkD1jnOqybU", "content": "", "creation_timestamp": "2025-03-30T13:00:05.000000Z"}, {"uuid": "cb97778a-5f0e-400e-9184-da0a2c7efa85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/qSYtNRP0IMj2sucim70p_fDnM44Yjw-sDTcgemaoM4YTLgI", "content": "", "creation_timestamp": "2025-04-01T13:00:06.000000Z"}, {"uuid": "35c338b2-513f-4001-b4e4-9b9249a24e2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/iAtNSwWp7cf35MLu3yHbbe9UursYBxHX-AKTGv3U1vLSqvc", "content": "", "creation_timestamp": "2025-04-01T11:00:06.000000Z"}, {"uuid": "547dcfb4-bc68-448a-ba32-1d7b63a5ceb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/abp-92o5hKBAk_DtUBF145InVAyFbzPIrVHjJ0eU3_qJ9UM", "content": "", "creation_timestamp": "2025-04-22T01:00:07.000000Z"}, {"uuid": "3b1363d3-d7b2-47a1-b159-5d92486dfd62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/vQ0Sm3TCgGLw115KTy13Xlz5wNa50qfz0GIGSnr52V26EMk", "content": "", "creation_timestamp": "2025-03-26T20:00:07.000000Z"}, {"uuid": "5a5fc9fe-c7b7-481b-b52a-a846354a5521", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/4n6mfM_xv4uavydfdKkdBPOPI2gWNV_wMBFRreY1FAnSrV4", "content": "", "creation_timestamp": "2025-03-28T16:00:09.000000Z"}, {"uuid": "512300be-5bd4-48f6-905e-f56f1d794bc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Hfte5K5JRMTfmEi8KMw9E8ziTEtCcWsXnQMYOD3-afvSXGU", "content": "", "creation_timestamp": "2025-04-05T23:00:06.000000Z"}, {"uuid": "b0ecef3f-fb6b-4174-abdd-713f8b8ce044", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/l-RUKEq1u5JC4p5gtwKJVjQtOGsljXG_cScAzYuNwcOFMHM", "content": "", "creation_timestamp": "2025-04-02T01:00:08.000000Z"}, {"uuid": "092cba73-bc33-43d1-b360-aaac8c11aef8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/N8uq1Jx0g0gbfuBCg8wzq4C3UqiEx5PBm4E8_nw5MDhPdA4", "content": "", "creation_timestamp": "2025-04-01T23:00:05.000000Z"}, {"uuid": "6f26d3c8-9105-4931-9342-2099bcb8d018", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/iXXrSRZXi-ojvdasxd-BMH7IqLKZibvE0e6rFuxhoF-GkT8", "content": "", "creation_timestamp": "2025-03-29T16:00:07.000000Z"}, {"uuid": "61ffee86-371f-447f-b383-adf8ca051887", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/eGKt8kKwx_eQc5bu5I9PYPM2cFEbI_Wro1vivFVNnBKzGhk", "content": "", "creation_timestamp": "2025-03-29T10:00:06.000000Z"}, {"uuid": "bb62d087-81b1-4268-929e-9507a026c5c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Oj1Gm0LSQ6zMYq9CDOc6JWlWhSvAkbg9hPN2p7tpqu4VtaY", "content": "", "creation_timestamp": "2025-03-25T22:00:06.000000Z"}, {"uuid": "17ccee43-c16f-44c2-bd30-6a18e0ddff7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/KggYeN27jZ-a4rfgVHT2MGe0BAzOSuPW6YEwI7pxp7JEmks", "content": "", "creation_timestamp": "2025-03-29T08:00:08.000000Z"}, {"uuid": "a1e96229-2e6c-4c27-ae41-63198d7404f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/60gE655Eblig7kjvivAQ0buza0eLtX9h5_F_jq6AyX-e9zw", "content": "", "creation_timestamp": "2025-03-25T16:00:10.000000Z"}, {"uuid": "20a8fb96-770b-4973-a186-167fdf22ee79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/h6cJ-Bb4gGrhYNIaq1cPfx6WXODL6SvZsQo9w20oGjI_o2g", "content": "", "creation_timestamp": "2025-04-13T21:00:05.000000Z"}, {"uuid": "b099f7c4-f01f-4305-af42-de04dbb0e7d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/AY95cmPbDu5Ys6k83NsK0yNyOIktNGra7DpD3Rddj1Ig7Pg", "content": "", "creation_timestamp": "2025-04-03T23:00:06.000000Z"}, {"uuid": "0b3b990d-c6ad-48ed-a13c-caf019201b8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/ubBm10qhDTP9MXroU9jiPc4W2J15yebyKMDltYLLTb-Bk7k", "content": "", "creation_timestamp": "2025-04-13T17:00:07.000000Z"}, {"uuid": "3f978739-3cd5-4d53-be96-ea47e0fc7781", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/S8evqPLoGvKFCYHeTINL4ie15PDtB1zbRa6NYmcOYj_DCuM", "content": "", "creation_timestamp": "2025-03-27T08:00:07.000000Z"}, {"uuid": "d2946b99-3ab7-4709-a193-34356eb888ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/jugPolFPlglHUcgQOfXJundEsc_sTfJEDQSC3utb4wUBt-0", "content": "", "creation_timestamp": "2025-04-08T21:00:06.000000Z"}, {"uuid": "36b65eff-bace-4220-a135-cdc188d90610", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/PFczZxou3M8bxtA_ogzzcgh7g-AmtdGPjCcJVMEUDXCS9Y4", "content": "", "creation_timestamp": "2025-04-08T17:00:08.000000Z"}, {"uuid": "4f9bd0e5-74cc-482e-9c36-efc409512ba9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/QQZulGQZ-c3MpjwEQ4QFRhKUiBHZ2y5K88-7UD6uVG6sxDc", "content": "", "creation_timestamp": "2025-03-26T04:00:07.000000Z"}, {"uuid": "4a67e0e2-b45f-4b4c-8627-9f5fc81f57f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/CeQ1yh7OvzihbEoW1SoyhVOZQiuMkQZ5ztAxiTGIHTmr8QU", "content": "", "creation_timestamp": "2025-03-26T04:00:06.000000Z"}, {"uuid": "32ae23e6-1ec5-46ff-9111-1781e33679b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/NpG85aq7tLrhk2BRDw3d-JYvHHf0NJAv_t6hPSlAsFpVKhc", "content": "", "creation_timestamp": "2025-04-10T05:00:10.000000Z"}, {"uuid": "cb7e6169-ba8d-4eb4-a8f7-4251670e504d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Iegk-mk7b4gRMuoPBuKGulcUZlutdsJ2Znl-MBCh_FpJK8g", "content": "", "creation_timestamp": "2025-04-06T17:00:06.000000Z"}, {"uuid": "2f8d8941-9838-43d1-8af6-087d6777b3b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/KpkCeSE5Vlf_mLfqYCWmJamGDRo0xesaIdEM43dG6i0cCf0", "content": "", "creation_timestamp": "2025-04-17T17:00:13.000000Z"}, {"uuid": "b1c12dc8-2754-4bbd-881c-da1d786f3669", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/mIQYUSqdZG0qC4ccPPwRpa360xwamTmZCIxoO7vEILe4Sa0", "content": "", "creation_timestamp": "2025-04-15T05:00:10.000000Z"}, {"uuid": "e6d53551-0d99-4bf7-906b-d654fb4e1bb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Uy93u5fzD15QgLfpWZdhtzPpWo-K400RMrt7kTqJlUxItLk", "content": "", "creation_timestamp": "2025-04-17T01:00:08.000000Z"}, {"uuid": "d2b080bd-887b-4415-b02a-ad53482e9fd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/jIRsH1oLHQcZvaPNlxDU5BJtZnc15zFAaVoXr2MLHdS-3r0", "content": "", "creation_timestamp": "2025-04-28T21:00:06.000000Z"}, {"uuid": "f1c02962-3e6b-4972-b171-6248c641fac7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/URqOiJy6jj4g4EvmcBVRx9BvwVfWdwMKgkptgqRz_hsO8qo", "content": "", "creation_timestamp": "2025-04-12T17:00:11.000000Z"}, {"uuid": "e9282e31-e71f-4dcf-8bf3-43cf3b20a4e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/L3qHfVp5x1avwO8pxBTf9bu-HT60-x98hU6VVbkjPley9dQ", "content": "", "creation_timestamp": "2025-04-18T09:00:07.000000Z"}, {"uuid": "fe3667f0-52be-464c-9b08-bf024f18abf2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/r84uk1c1f1koqzztiTdxByQ9BLtYAaDiWUWNZ6l_8-95JYw", "content": "", "creation_timestamp": "2025-05-07T17:00:13.000000Z"}, {"uuid": "881adb0d-1d35-4511-8418-24d1e80f3fc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/SYmGj_MDj-F682IcXl4wrcSlV57ttmjlosZ04VZo999eeGs", "content": "", "creation_timestamp": "2025-04-07T05:00:06.000000Z"}, {"uuid": "0bfe7d5e-bc49-4fe9-afda-a00544dd7690", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/KTusQ1Zl6g16yFMJpcG6QZ51BLDyVFDkHCq2qzLVp_gALks", "content": "", "creation_timestamp": "2025-04-12T05:00:07.000000Z"}, {"uuid": "4996d67d-a55c-4e5c-adb7-9a233e15de2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/A1O7WKXHB9clDzZYd4ZMA3szheiLB_qo-tJ8mGUODQmNFjY", "content": "", "creation_timestamp": "2025-04-16T17:00:08.000000Z"}, {"uuid": "b77dada6-52bf-4073-9e38-5513bd3aa64b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/wJJNpcmq9kx21MPfY9-4icgXC2_RjU8KWi9ZvsTo6oz7fwk", "content": "", "creation_timestamp": "2025-04-07T01:00:08.000000Z"}, {"uuid": "2ed7fecd-c3fa-4b70-8f15-4ed72d229c8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/_tBYQ5sXHOPpZPlcFwVWhcPBFfo28rK-2OYMPBuQVz7F5zc", "content": "", "creation_timestamp": "2025-04-25T21:00:06.000000Z"}, {"uuid": "e8e3bee7-a72f-4773-888f-ae9c0955b2cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Vj3yBYYkYbLaud5ygahnU_3G6kYxmhBX_ge6KhfvcG22Fnk", "content": "", "creation_timestamp": "2025-04-07T17:00:14.000000Z"}, {"uuid": "9f2bd20e-3d1f-4972-8a0f-6a6e96e09f4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/hAF6FKdpjYuECXQoPP2zwfPMJS3VwjnUj1G2aKjirn0WF2A", "content": "", "creation_timestamp": "2025-04-07T17:00:07.000000Z"}, {"uuid": "fac54676-4b33-446e-b74c-8af8831bff01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/3-ZHnGIziHQfiAv_nnRcq-K1CX5YmX9HY0dHsXamLuxzSs0", "content": "", "creation_timestamp": "2025-04-09T23:00:06.000000Z"}, {"uuid": "d9ad7976-564d-46bd-909b-2b74eefbdef1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/hamX_hI5yzIYjKWWv7LiY3F27OagmVDHwswKvlF8SqWE-rw", "content": "", "creation_timestamp": "2025-05-04T13:00:06.000000Z"}, {"uuid": "5f77724c-0638-45da-90f8-a97e295887fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/k3S0feTcrb9_PdTo9W8kdn20Sf3cJ5JR-Hb7yAFT_t4uViI", "content": "", "creation_timestamp": "2025-03-25T10:00:06.000000Z"}, {"uuid": "aa7f4b5e-a0fa-40c6-a0f6-314b32ad93f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/VuRUu-_hR7R74eOPx36fHA29ubiAsTvJUkxBZB9FS5sqcH8", "content": "", "creation_timestamp": "2025-04-29T13:00:07.000000Z"}, {"uuid": "b4078728-36ce-4d18-9877-05c667031c34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/WaBw3Jw0vb5AGJc9tIYoYKjH3e2RrXYOROLA0rL6tF_sE5E", "content": "", "creation_timestamp": "2025-04-30T05:00:10.000000Z"}, {"uuid": "6b9cb4a6-1e64-4e06-b000-c527c34417d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/PwwJAzTb-IdG19a4lkKUuUkLQSIKKrHtPLjHlAbBLV6HlJc", "content": "", "creation_timestamp": "2025-03-25T04:00:08.000000Z"}, {"uuid": "c0353b34-ffd2-444d-99c3-ea1bfa643623", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/0GfCOzXtqvFdrqIAVQZHiIyuC3I1uZNIHuukwGa3RPYAk8Y", "content": "", "creation_timestamp": "2025-03-24T22:00:08.000000Z"}, {"uuid": "f1d18de7-c926-4a6e-b051-a8eaf841f90c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/KZLuLei3i2n7XC6e6zprP-B6OUDrwAOeGpLergYRR6Q-lSo", "content": "", "creation_timestamp": "2025-03-25T12:00:06.000000Z"}, {"uuid": "ecb7003d-d18a-4bbf-a2be-982426b9db7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Bv5dxy_V5soxsvLh8l7xGypCiAqkJocQ9bLW1ZDnBcCxd0M", "content": "", "creation_timestamp": "2025-03-24T20:00:05.000000Z"}, {"uuid": "cb96c57f-f157-4b7d-b078-15559646e522", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/6nHZWxLgwgyMKwZNY4CCS-Ob_vaAl5iyDjwJ0alABpjsTxw", "content": "", "creation_timestamp": "2025-03-23T16:00:12.000000Z"}, {"uuid": "c80bd1b2-af3b-4d1b-bc7d-7719f5c5881f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/UWcQRTLyNnbLIimUgspqi9VApbez8X0RE6Ho1-v9XBNUVo8", "content": "", "creation_timestamp": "2025-03-23T16:00:09.000000Z"}, {"uuid": "33aeb2d7-0ddd-46cf-922b-0caf3fc1b2c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/8TsqCuqhLhm6r8kKKjPB0VUm6k4BRD_fx-ZYTlUSQYA3m_4", "content": "", "creation_timestamp": "2025-03-24T16:00:07.000000Z"}, {"uuid": "95b68439-ae1a-44d4-aa77-2ae1b70c235c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/As92OAZC29RxaApN-TJBcdYpVfrjZ9mNHg9UZQxtQM37C4s", "content": "", "creation_timestamp": "2025-03-24T10:00:05.000000Z"}, {"uuid": "fba72af5-040c-441a-ba86-fa40f69cb7ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/w1bL0ZfQbZjC6kNLjY6qJg4sGK5mjn3UxkyFp-Fo5l10hpw", "content": "", "creation_timestamp": "2025-03-24T04:00:05.000000Z"}, {"uuid": "69f6c390-4959-49ed-a118-db79d10708d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/vhKxhjf62z55R-7SGUwls-GgMbIE0bi-JLF0WWGYokDS0q0", "content": "", "creation_timestamp": "2025-03-23T22:00:05.000000Z"}, {"uuid": "2801231c-61ba-4013-952d-2b239e0101a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/proxy_bar/2557", "content": "CVE-2025-29927 \u2013 Next.js Middleware Authorization Bypass\n*\nCVSS 9.8\n*\nWriteUp", "creation_timestamp": "2025-03-23T07:16:32.000000Z"}, {"uuid": "2e9833c7-f0c5-4f27-8d09-3fe795728a3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/4245", "content": "CVE-2025-29927 Proof of Concept\n\nhttps://github.com/aydinnyunus/CVE-2025-29927", "creation_timestamp": "2025-03-25T13:46:35.000000Z"}, {"uuid": "d9fdda2a-8cb4-418e-9659-c7217bc08e77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/4243", "content": "Next.js Middleware Authorization Bypass (CVE-2025-29927)\n\nhttps://github.com/vulhub/vulhub/tree/master/next.js/CVE-2025-29927", "creation_timestamp": "2025-03-25T13:46:35.000000Z"}, {"uuid": "46c23fe4-331a-4a10-8f3b-fd5dac984f15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/true_secator/6880", "content": "\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Akamai \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u044e\u0442 \u043e \u043f\u043e\u043f\u0430\u0434\u0430\u043d\u0438\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0435 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 Next.js \u043f\u043e\u0434 \u043f\u0440\u0438\u0446\u0435\u043b \u0445\u0430\u043a\u0435\u0440\u043e\u0432.\n\n\u041f\u0435\u0440\u0432\u044b\u0435 \u043f\u043e\u043f\u044b\u0442\u043a\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0432\u0430\u0436\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Next.js \u0431\u044b\u043b\u0438 \u0437\u0430\u0444\u0438\u043a\u0441\u0438\u0440\u043e\u0432\u0430\u043d\u044b \u043c\u0435\u043d\u0435\u0435 \u0447\u0435\u043c \u0447\u0435\u0440\u0435\u0437 \u043d\u0435\u0434\u0435\u043b\u044e \u043f\u043e\u0441\u043b\u0435 \u0432\u044b\u043f\u0443\u0441\u043a\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439.\n\n\u0420\u0435\u0447\u044c \u0438\u0434\u0435\u0442 \u043e CVE-2025-29927 (CVSS 9,1), \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0431\u044b\u043b\u0430 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430 21 \u043c\u0430\u0440\u0442\u0430, \u0447\u0435\u0440\u0435\u0437 \u043d\u0435\u0434\u0435\u043b\u044e \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0431\u044b\u043b\u0438 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0432 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 Next.js 15.2.3 \u0438 14.2.25. \u0418\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0442\u0430\u043a\u0436\u0435 \u0431\u044b\u043b\u0438 \u0432\u043a\u043b\u044e\u0447\u0435\u043d\u044b \u0432 \u0432\u0435\u0440\u0441\u0438\u0438 13.5.9 \u0438 12.3.5, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u044f\u0432\u0438\u043b\u0438\u0441\u044c \u043d\u0430 \u0432\u044b\u0445\u043e\u0434\u043d\u044b\u0445.\n\nNext.js \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0435 \u041f\u041e \u0434\u043b\u044f \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u0442\u0430\u043a\u0436\u0435 \u043e\u0442\u0432\u0435\u0447\u0430\u0435\u0442 \u0437\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e, \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u044e \u0438 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0443 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u043e\u0432 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0430 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0439 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a x-middleware-subrequest \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0434\u043b\u044f \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u044d\u0442\u0438\u043c\u0438 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430\u043c\u0438 \u0438 \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u044f \u0431\u0435\u0441\u043a\u043e\u043d\u0435\u0447\u043d\u044b\u0445 \u0446\u0438\u043a\u043b\u043e\u0432.\n\n\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0435\u0433\u043e \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0430, \u0438\u043c\u0435\u044e\u0449\u0435\u0433\u043e \u043f\u0440\u0435\u0434\u0441\u043a\u0430\u0437\u0443\u0435\u043c\u043e\u0435 \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u0442\u044c \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u044b\u0435 \u0437\u0430\u043f\u0440\u043e\u0441\u044b, \u0438\u043c\u0438\u0442\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a, \u0438 \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u044c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0432 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0438 Next.js.\n\n\u041f\u0440\u0438 \u043e\u0431\u0445\u043e\u0434\u0435 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0433\u043e \u041f\u041e \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 \u043d\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u0442 \u0441\u0432\u043e\u0438 \u043e\u0431\u044b\u0447\u043d\u044b\u0435 \u043f\u0440\u043e\u0446\u0435\u0434\u0443\u0440\u044b \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0447\u0442\u043e \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u043c\u0443 \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0434\u043e\u0441\u0442\u0443\u043f\u0443 \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u0438\u043b\u0438 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u044b\u043c \u0447\u0430\u0441\u0442\u044f\u043c \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f.\n\n\u0425\u043e\u0442\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u043b\u0438\u0448\u044c \u0440\u044f\u0434 \u0432\u0435\u0440\u0441\u0438\u0439 Next.js, \u043c\u0435\u0442\u043e\u0434\u044b \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0440\u0430\u0437\u043b\u0438\u0447\u0430\u044e\u0442\u0441\u044f \u0432 \u0437\u0430\u0432\u0438\u0441\u0438\u043c\u043e\u0441\u0442\u0438 \u043e\u0442 \u0432\u0435\u0440\u0441\u0438\u0438.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Rapid7, \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0435 \u0432\u043b\u0438\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0437\u0430\u0432\u0438\u0441\u0438\u0442 \u043e\u0442 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f, \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0433\u043e \u041f\u041e \u0438 \u0446\u0435\u043b\u0438 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f.\n\n\u041a\u0430\u043a \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442 \u0432 Rapid7, \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0441\u043b\u0435\u0434\u0443\u0435\u0442 \u0440\u0430\u0441\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c, \u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442\u0441\u044f \u043b\u0438 \u0438\u0445 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f \u0438\u0441\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043d\u0430 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0435 \u041f\u041e \u0434\u043b\u044f \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n\u0412\u0435\u0434\u044c, \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e, \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0435 \u041f\u041e, \u043d\u043e \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u0435\u0442 \u043a\u0430\u043a \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u0434\u043b\u044f API \u0431\u044d\u043a\u044d\u043d\u0434\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0440\u0430\u0431\u043e\u0442\u0430\u044e\u0442 \u0441 \u043b\u043e\u0433\u0438\u043a\u043e\u0439 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043d\u0430 \u0441\u0442\u043e\u0440\u043e\u043d\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u0430.\n\n\u041e\u0431\u0445\u043e\u0434 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0433\u043e \u041f\u041e Next.js \u0444\u0440\u043e\u043d\u0442\u0435\u043d\u0434\u0430 \u043d\u0435 \u043f\u043e\u0432\u043b\u0438\u044f\u0435\u0442 \u043d\u0430 \u0441\u043f\u043e\u0441\u043e\u0431\u043d\u043e\u0441\u0442\u044c \u0431\u044d\u043a\u044d\u043d\u0434\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439.\n\n\u0425\u043e\u0442\u044f \u0435\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u044e\u0442, \u0447\u0442\u043e \u0438\u043c \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043e \u0441\u043b\u0443\u0447\u0430\u044f\u0445 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-29927 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445, \u0442\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435 \u0432 Akamai \u0443\u0436\u0435 \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u044e\u0442, \u043a\u0430\u043a \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0441\u043a\u0430\u043d\u044f\u0442 \u0441\u0435\u0442\u044c \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432, \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u044d\u0442\u043e\u0439 \u043e\u0448\u0438\u0431\u043a\u043e\u0439.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0444\u0438\u043a\u0441\u0438\u0440\u0443\u0435\u043c\u044b\u0435 \u0430\u0442\u0430\u043a\u0438 \u0438\u043c\u0438\u0442\u0438\u0440\u0443\u044e\u0442 \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u043e \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0445 \u043f\u043e\u0434\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 \u0432 \u043e\u0434\u043d\u043e\u043c \u0437\u0430\u043f\u0440\u043e\u0441\u0435, \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u044e\u0449\u0438\u0445 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u044e\u044e \u043b\u043e\u0433\u0438\u043a\u0443 \u043f\u0435\u0440\u0435\u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f Next.js, \u0438 \u043e\u0447\u0435\u043d\u044c c\u0445\u043e\u0436\u0438 c \u043b\u043e\u0433\u0438\u043a\u043e\u0439 PoC, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0438 (\u0432\u043c\u0435\u0441\u0442\u0435 \u0441 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u043c\u0438 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u044f\u043c\u0438) \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0432\u0448\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438.", "creation_timestamp": "2025-03-26T17:00:07.000000Z"}, {"uuid": "f7c84c08-af7d-4885-a3c2-0b3806b58d20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/CyberSecurityIL/67963", "content": "\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05e7\u05e8\u05d9\u05d8\u05d9\u05ea (CVE-2025-29927) \u05d4\u05ea\u05d2\u05dc\u05ea\u05d4 \u05d1-Next.js, \u05e4\u05e8\u05d9\u05d9\u05de\u05d5\u05d5\u05e8\u05e7 \u05e4\u05d5\u05e4\u05d5\u05dc\u05e8\u05d9 \u05dc\u05d1\u05e0\u05d9\u05d9\u05ea \u05d9\u05d9\u05e9\u05d5\u05de\u05d9 \u05d5\u05d5\u05d1 \u05de\u05d1\u05d5\u05e1\u05e1\u05d9 React. \n\n\u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05de\u05d0\u05e4\u05e9\u05e8\u05ea \u05dc\u05ea\u05d5\u05e7\u05e4\u05d9\u05dd \u05dc\u05e2\u05e7\u05d5\u05e3 \u05d1\u05d3\u05d9\u05e7\u05d8 \u05e9\u05e0\u05d5\u05ea \u05d5\u05dc\u05d4\u05e9\u05d9\u05d2 \u05d2\u05d9\u05e9\u05d4 \u05dc\u05d0 \u05de\u05d5\u05e8\u05e9\u05d9\u05ea \u05dc\u05d3\u05e4\u05d9\u05dd \u05e8\u05d2\u05d9\u05e9\u05d9\u05dd.\n\n\u05d4\u05d1\u05e2\u05d9\u05d4 \u05e0\u05d5\u05d1\u05e2\u05ea \u05de\u05d4\u05d0\u05d5\u05e4\u05df \u05e9\u05d1\u05d5 Next.js \u05de\u05d8\u05e4\u05dc \u05d1- x-middleware-subrequest. \n\n\u05d0\u05e0\u05d9 \u05dc\u05d0 \u05d0\u05e8\u05d7\u05d9\u05d1 \u05e2\u05dc \u05db\u05dc \u05d4\u05e4\u05e8\u05d8\u05d9\u05dd \u05d4\u05d8\u05db\u05e0\u05d9\u05d9\u05dd \u05db\u05d0\u05df \u05d0\u05d1\u05dc \u05d7\u05e9\u05d5\u05d1 \u05e9\u05ea\u05d3\u05e2\u05d5 \u05e9\u05d4\u05d2\u05e8\u05e1\u05d0\u05d5\u05ea Next.js \u05d4\u05de\u05ea\u05d5\u05e7\u05e0\u05d5\u05e5 \u05d4\u05df 12.3.5, 13.5.9, 14.2.25 \u05d5-15.2.3. \n\n\u05e4\u05e8\u05d8\u05d9\u05dd \u05e0\u05d5\u05e1\u05e4\u05d9\u05dd \u05d1\u05d3\u05d9\u05d5\u05d5\u05d7 \u05d4\u05e8\u05e9\u05de\u05d9 - \u05db\u05d0\u05df\n\nhttps://t.me/CyberSecurityIL/6870\n\n#\u05d7\u05d5\u05dc\u05e9\u05d5\u05ea", "creation_timestamp": "2025-03-24T19:25:16.000000Z"}, {"uuid": "5f881f25-4dc3-4f87-a15e-fb934033cbe1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/true_secator/6868", "content": "\u0412 \u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0435 Next.js React \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u043f\u0440\u043e\u0432\u0435\u0440\u043e\u043a \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u043f\u0440\u0438 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2025-29927 \u0438 \u0438\u043c\u0435\u0435\u0442 \u043e\u0446\u0435\u043d\u043a\u0443 CVSS 9,1 \u0438\u0437 10,0. \n\nNext.js \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0439 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a x-middleware-subrequest, \u0447\u0442\u043e\u0431\u044b \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0442\u0438\u0442\u044c \u0437\u0430\u043f\u0443\u0441\u043a \u0431\u0435\u0441\u043a\u043e\u043d\u0435\u0447\u043d\u044b\u0445 \u0446\u0438\u043a\u043b\u043e\u0432 \u0440\u0435\u043a\u0443\u0440\u0441\u0438\u0432\u043d\u044b\u043c\u0438 \u0437\u0430\u043f\u0440\u043e\u0441\u0430\u043c\u0438.\n\n\u041f\u0440\u043e\u043f\u0443\u0441\u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0433\u043e \u041f\u041e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u043f\u0440\u043e\u0441\u0430\u043c \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u044c \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438, \u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u0444\u0430\u0439\u043b\u043e\u0432 cookie \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438, \u043f\u0435\u0440\u0435\u0434 \u0434\u043e\u0441\u0442\u0438\u0436\u0435\u043d\u0438\u0435\u043c \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u043e\u0432.\n\n\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d \u0432 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 12.3.5, 13.5.9, 14.2.25 \u0438 15.2.3. \u0412 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043c\u0435\u0440 \u043f\u043e \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0430\u0442\u044c \u0432\u043d\u0435\u0448\u043d\u0438\u0435 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c\u0441\u043a\u0438\u0435 \u0437\u0430\u043f\u0440\u043e\u0441\u044b, \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0449\u0438\u0435 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a x-middleware-subrequest.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u0420\u0430\u0448\u0438\u0434 \u0410\u043b\u043b\u0430\u043c (\u043e\u043d \u0436\u0435 zhero \u0438 cold-try), \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0432\u0448\u0438\u0439 \u0438 \u0441\u043e\u043e\u0431\u0449\u0438\u0432\u0448\u0438\u0439 \u043e\u0431 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0443\u0436\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u043b \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438, \u0432 \u0441\u0432\u044f\u0437\u0438 \u0441 \u0447\u0435\u043c \u043d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043a\u0430\u043a \u043c\u043e\u0436\u043d\u043e \u0441\u043a\u043e\u0440\u0435\u0435 \u043f\u0440\u0438\u043c\u0435\u043d\u0438\u0442\u044c \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f.\n\n\u041a\u0430\u043a \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442 \u0432 JFrog, \u043e\u0448\u0438\u0431\u043a\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043b\u0435\u0433\u043a\u043e \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u044c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438, \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u043c\u044b\u0435 \u0432 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u043c \u041f\u041e Next.js, \u0447\u0442\u043e \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u0430\u043c, \u0437\u0430\u0440\u0435\u0437\u0435\u0440\u0432\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0434\u043b\u044f \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u043e\u0432 \u0438\u043b\u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0432\u044b\u0441\u043e\u043a\u043e\u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439.\n\n\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u0442\u0430\u043a\u0436\u0435 \u0437\u0430\u044f\u0432\u0438\u043b\u0430, \u0447\u0442\u043e \u043b\u044e\u0431\u043e\u0439 \u0432\u0435\u0431-\u0441\u0430\u0439\u0442, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0439 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0435 \u041f\u041e \u0434\u043b\u044f \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0431\u0435\u0437 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0445 \u043f\u0440\u043e\u0432\u0435\u0440\u043e\u043a, \u0443\u044f\u0437\u0432\u0438\u043c \u0434\u043b\u044f CVE-2025-29927, \u0447\u0442\u043e \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c.", "creation_timestamp": "2025-03-24T12:44:29.000000Z"}, {"uuid": "c155122e-5487-4507-a527-fd2aedcc7e4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/information_security_channel/53489", "content": "CVE-2025-29927: Next.js Middleware Authorization Bypass\nhttps://www.offsec.com/blog/cve-2025-29927/\n\nIn this CVE blog, we explore a vulnerability in Next.js stemming from the improper trust of the x-middleware-subrequest header. \nThe post CVE-2025-29927: Next.js Middleware Authorization Bypass (https://www.offsec.com/blog/cve-2025-29927/) appeared first on OffSec (https://www.offsec.com/).", "creation_timestamp": "2025-05-01T21:46:11.000000Z"}, {"uuid": "17a58ff7-9ae4-45e0-ac21-9f6ec64772e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/jj_8tl/345", "content": "We recently looked deeper at the authentication bypass vulnerability in Next.js (CVE-2025-29927) and discovered some intelligent and comprehensive ways to check for the vulnerability. Read more in our blog post: https://t.co/f7f6VKzEcS\n\n\u2728 Shared via Awham AutoFeed \u2728\nChannel: @jj_8tl", "creation_timestamp": "2025-04-11T12:25:54.000000Z"}, {"uuid": "d0bfc5a2-9607-471b-a5f1-60a09d47ff36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/11966", "content": "#exploit\n1. CVE-2025-1974, CVE-2025-24514:\nIngress(Nightmare) NGINX RCE\nhttps://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities\n\n2. CVE-2025-24799, CVE-2025-24801:\nPre-auth SQLi to RCE in GLPI\nhttps://blog.lexfo.fr/glpi-sql-to-rce.html\n\n3. CVE-2025-29927:\nAuthorization Bypass in Next.js Middleware\nhttps://github.com/arvion-agent/next-CVE-2025-29927\n]-> Bypass Checker:\nhttps://github.com/RoyCampos/CVE-2025-29927", "creation_timestamp": "2025-03-26T00:36:58.000000Z"}, {"uuid": "37a899be-ea56-4dd8-9918-ed4a76f41e54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "exploited", "source": "https://t.me/thehackernews/6564", "content": "\ud83d\udc40 6-year-old bugs are back\u2014and being weaponized.\n\nCISA just flagged two 2019 Sitecore RCE flaws (CVE-2019-9874 & 9875) as actively exploited.\n\nBut it doesn\u2019t stop there:\n\u27a1\ufe0f Next.js auth bypass (CVE-2025-29927) is under live attack\n\u27a1\ufe0f DrayTek routers face fresh waves targeting old RCE/LFI bugs.\n\n\ud83d\udd17 Details: https://thehackernews.com/2025/03/cisa-flags-two-six-year-old-sitecore.html\n\nOld CVEs. New exploits. Patch now.", "creation_timestamp": "2025-03-27T07:26:21.000000Z"}, {"uuid": "6662eedb-6ad2-4198-9545-8e7c63bf79bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/thehackernews/6539", "content": "\u26a0\ufe0f Critical Next.js security flaw\u2014PATCH NOW!\n\nA 9.1 CVSS bug (CVE-2025-29927) lets attackers bypass auth checks in middleware and access admin-only pages.\n\nExploit details are now public.\n\n\ud83d\udee0\ufe0f Fixed in: v12.3.5, v13.5.9, v14.2.25, v15.2.3\n\ud83d\udee1\ufe0f Can't patch? Block x-middleware-subrequest headers.\nThis is urgent. Middleware-based auth alone isn't safe.\n\n\ud83d\udc49 Read the full advisory: https://thehackernews.com/2025/03/critical-nextjs-vulnerability-allows.html", "creation_timestamp": "2025-03-24T10:20:22.000000Z"}, {"uuid": "4ad065db-7598-483d-8b24-2a5c223baae0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/9773", "content": "I Scanned 100,000+ Subdomains For CVE-2025-29927\n\nhttps://www.youtube.com/watch?v=7hqBePL0C_I", "creation_timestamp": "2025-04-01T12:40:16.000000Z"}, {"uuid": "69b0c441-aa50-435f-bf73-7ecf5eb67105", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/9754", "content": "Doing the Due Diligence: Analyzing the Next.js Middleware Bypass (CVE-2025-29927) \u203a Searchlight Cyber\n\nhttps://slcyber.io/assetnote-security-research-center/doing-the-due-diligence-analysing-the-next-js-middleware-bypass-cve-2025-29927/", "creation_timestamp": "2025-03-24T11:14:09.000000Z"}, {"uuid": "7ee51373-522f-4376-bb59-4a68b468fce0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11969", "content": "#tools\n#Blue_Team_Techniques\n1. Static Analysis of GUID Encoded Shellcode\nhttps://isc.sans.edu/diary/Static+Analysis+of+GUID+Encoded+Shellcode/31774\n2. Sigma Rule for CVE-2025-29927 (Next.js) Detection\nhttps://github.com/elshaheedy/CVE-2025-29927-Sigma-Rule\n]-> Nuclei template\n3. CVE-2025-30066 Detection Tool\nhttps://github.com/Checkmarx/Checkmarx-CVE-2025-30066-Detection-Tool", "creation_timestamp": "2025-03-26T02:17:15.000000Z"}, {"uuid": "e77d2211-e390-483b-97c7-3ad72bd6b992", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/9815", "content": "Next.js Middleware Auth Bypass (CVE-2025-29927) and Local File Read via XXE - HackDonalds Challenge\n\nhttps://www.youtube.com/watch?v=KwD_TKZr0YY", "creation_timestamp": "2025-04-17T13:00:46.000000Z"}, {"uuid": "3283cede-2335-451a-8767-24f025767533", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/suboxone_chatroom/7688", "content": "Unknown vulnerability in CrushFTP, no rating\u2757\ufe0f\n\nThe vulnerability allows attackers to gain unauthenticated access if any HTTP(S) port is exposed in the configuration.\n\nSearch at Netlas.io: \n\ud83d\udc49 Link: https://nt.ls/tI4nF\n\ud83d\udc49 Dork: http.headers.server:\"CrushFTP\"\n\nRead more: https://www.rapid7.com/blog/post/2025/03/25/etr-notable-vulnerabilities-in-next-js-cve-2025-29927/", "creation_timestamp": "2025-04-07T11:29:11.000000Z"}, {"uuid": "be1003cb-3540-4262-9d1b-a16189901255", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/suboxone_chatroom/7709", "content": "\ud83c\udf00 This is wild!\n\nYou\u2019ve probably seen the buzz around the Next.js middleware auth bypass (CVE-2025-29927) \u2014 but there\u2019s another less-known yet similar vulnerability: CVE-2024-51479.\n\nThis flaw allows attackers to bypass authentication by abusing the __nextLocale query parameter in the URL, tricking the middleware into granting access to protected routes.\n\nProof of Concept (PoC):\n\ncurl https://target.com/?__nextLocale=/admin\n\nThis vulnerability was fixed in Next.js v14.2.15, and Vercel-hosted apps have already been patched automatically.\n\nI found a very cool article explaining everything in detail:\n\nhttps://gmo-cybersecurity.com/blog/another-nextjs-middleware-bypass-en", "creation_timestamp": "2025-04-06T23:09:44.000000Z"}, {"uuid": "422a0b6f-08ec-4839-80fb-0b85b7f0a8ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/suboxone_chatroom/7685", "content": "Use Vulhub to reproduce Next.js Middleware Authorization Bypass (CVE-2025-29927)\nhttps://github.com/vulhub/vulhub/tree/master/next.js/CVE-2025-29927", "creation_timestamp": "2025-04-07T11:28:11.000000Z"}, {"uuid": "2fc9f97d-1e5c-43c4-9877-a3f4efd43105", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "Telegram/4V1L8rm_ci8R4NTF3AvtHqkyJLl9nOzw6nvw-H3zHaDaYho", "content": "", "creation_timestamp": "2026-05-13T03:00:06.000000Z"}, {"uuid": "1d747cb3-8976-49b5-9115-3b08f974d3d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-05-07)", "content": "", "creation_timestamp": "2026-05-07T00:00:00.000000Z"}, {"uuid": "db1e2bd2-170d-4369-b956-4dddbcffb266", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/true_secator/8185", "content": "\u041d\u043e\u0432\u0430\u044f \u0445\u0430\u043a\u0435\u0440\u0441\u043a\u0430\u044f \u0433\u0440\u0443\u043f\u043f\u0430 PCPJack \u0432\u0437\u043b\u0430\u043c\u044b\u0432\u0430\u0435\u0442 \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b, \u0440\u0430\u043d\u0435\u0435 \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u0433\u0440\u0443\u043f\u043f\u043e\u0439 TeamPCP, \u0438 \u0437\u0430\u043c\u0435\u043d\u044f\u0435\u0442 \u0438\u0445 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0435 \u041f\u041e \u0441\u0432\u043e\u0438\u043c\u0438 \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u043c\u0438 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u0430\u043c\u0438, \u043f\u043e \u0438\u0442\u043e\u0433\u0443 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u044f \u043a\u0440\u0430\u0436\u0443 \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438\u0437 \u043e\u0431\u043b\u0430\u0447\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b.\n\n\u041a\u0430\u043a \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e, TeamPCP \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0437\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u043d\u0430 \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0445 \u0442\u0435\u0445\u043d\u043e\u043b\u043e\u0433\u0438\u044f\u0445 \u0438 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u0430 \u0441\u0432\u043e\u0438\u043c\u0438 \u0433\u0440\u043e\u043c\u043a\u0438\u043c\u0438 \u0430\u0442\u0430\u043a\u0430\u043c\u0438 \u043d\u0430 \u0446\u0435\u043f\u043e\u0447\u043a\u0438 \u043f\u043e\u0441\u0442\u0430\u0432\u043e\u043a, \u0432 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0435 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0431\u044b\u043b\u0438 \u0430\u0442\u0430\u043a\u043e\u0432\u0430\u043d\u044b\u00a0\u0441\u043a\u0430\u043d\u0435\u0440 Trivy \u043e\u0442 Aqua Security, \u043f\u0430\u043a\u0435\u0442\u044b PyPI\u00a0LiteLMM \u0438 Telnyx, \u0430 \u0432 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u0438\u00a0\u043f\u0430\u043a\u0435\u0442\u044b npm \u043e\u0442 SAP.\n\n\u0410\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u044c PCPJack \u0437\u0430\u0434\u0435\u0442\u0435\u043a\u0442\u0438\u043b\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 SentinelOne, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442, \u0447\u0442\u043e \u043f\u043e\u0441\u043b\u0435 \u043a\u0440\u0430\u0436\u0438 \u0445\u0430\u043a\u0435\u0440\u044b \u043c\u043e\u043d\u0435\u0442\u0438\u0437\u0438\u0440\u0443\u0435\u0442 \u0441\u0432\u043e\u044e \u0434\u0435\u044f\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u043e\u0433\u043e \u043c\u043e\u0448\u0435\u043d\u043d\u0438\u0447\u0435\u0441\u0442\u0432\u0430, \u0440\u0430\u0441\u0441\u044b\u043b\u043a\u0438 \u0441\u043f\u0430\u043c\u0430, \u043f\u0435\u0440\u0435\u043f\u0440\u043e\u0434\u0430\u0436\u0438 \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438\u043b\u0438 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430.\n\n\u0412 \u0447\u0438\u0441\u043b\u043e \u0446\u0435\u043b\u0435\u0432\u044b\u0445 \u0441\u0435\u0440\u0432\u0438\u0441\u043e\u0432 \u0432\u0445\u043e\u0434\u044f\u0442 Docker, Kubernetes, Redis, MongoDB, RayML \u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0435 \u0432\u0435\u0431-\u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f. \u0412\u043e \u043c\u043d\u043e\u0433\u0438\u0445 \u0441\u043b\u0443\u0447\u0430\u044f\u0445 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0430\u0435\u0442\u0441\u044f \u043f\u043e \u0441\u0435\u0442\u0438 \u0432\u043d\u0443\u0442\u0440\u0438 \u043d\u0435\u0451.\n\n\u0412\u0432\u0438\u0434\u0443 \u0441\u0445\u043e\u0434\u0441\u0442\u0432\u0430 \u0441 \u0430\u0442\u0430\u043a\u0430\u043c\u0438 TeamPCP, SentinelLabs \u043f\u043e\u043b\u0430\u0433\u0430\u0435\u0442, \u0447\u0442\u043e PCPJack \u043c\u043e\u0433 \u0431\u044b\u0442\u044c \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0430\u043d \u0431\u044b\u0432\u0448\u0438\u043c \u0443\u0447\u0430\u0441\u0442\u043d\u0438\u043a\u043e\u043c \u0438\u043b\u0438 \u043e\u0434\u043d\u0438\u043c \u0438\u0437 \u0447\u043b\u0435\u043d\u043e\u0432 TeamPCP, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043e\u0441\u043d\u043e\u0432\u0430\u043b \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u0443\u044e \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u044e.\n\n\u041c\u043d\u043e\u0433\u0438\u0435 \u0438\u0437 \u0441\u0435\u0440\u0432\u0438\u0441\u043e\u0432, \u043d\u0430 \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u0430 PCPJack, \u0441\u0445\u043e\u0436\u0438 \u0441 \u0440\u0430\u043d\u043d\u0438\u043c\u0438 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f\u043c\u0438 TeamPCP/PCPCat, \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0432\u0448\u0438\u043c\u0438\u0441\u044f \u0432 \u0434\u0435\u043a\u0430\u0431\u0440\u0435 2025 \u0433\u043e\u0434\u0430, \u0434\u043e \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u044b\u0445 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0439 \u043d\u0430\u0447\u0430\u043b\u0430 2026 \u0433\u043e\u0434\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0435, \u043f\u0440\u0435\u0434\u043f\u043e\u043b\u043e\u0436\u0438\u0442\u0435\u043b\u044c\u043d\u043e, \u043f\u0440\u0438\u0432\u0435\u043b\u0438 \u0438 \u043a \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f\u043c \u0432 \u0441\u043e\u0441\u0442\u0430\u0432\u0435 \u0433\u0440\u0443\u043f\u043f\u044b.\n\n\u0412 \u043e\u0442\u0447\u0435\u0442\u0435 SentinelLabs \u043e\u0442\u043c\u0435\u0447\u0430\u0435\u0442\u0441\u044f, \u0447\u0442\u043e PCPJack \u0437\u0430\u0440\u0430\u0436\u0430\u0435\u0442 \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0435 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u043d\u0430 \u0431\u0430\u0437\u0435 Linux \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0441\u043a\u0440\u0438\u043f\u0442\u0430 \u043e\u0431\u043e\u043b\u043e\u0447\u043a\u0438 \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c bootstrap.sh.\n\n\u041f\u0440\u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0438 \u0441\u043a\u0440\u0438\u043f\u0442 \u0441\u043e\u0437\u0434\u0430\u0435\u0442 \u0441\u043a\u0440\u044b\u0442\u0443\u044e \u0440\u0430\u0431\u043e\u0447\u0443\u044e \u0434\u0438\u0440\u0435\u043a\u0442\u043e\u0440\u0438\u044e, \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0435\u0442 \u0437\u0430\u0432\u0438\u0441\u0438\u043c\u043e\u0441\u0442\u0438 Python, \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0435\u0442 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u043c\u043e\u0434\u0443\u043b\u0438, \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u0435\u0442 \u0441\u043e\u0445\u0440\u0430\u043d\u0435\u043d\u0438\u0435 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u044f \u0438 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0435\u0442 \u043e\u0441\u043d\u043e\u0432\u043d\u043e\u0439 \u043e\u0440\u043a\u0435\u0441\u0442\u0440\u0430\u0442\u043e\u0440 (monitor.py).\n\n\u041d\u0430 \u044d\u0442\u043e\u043c \u043d\u0430\u0447\u0430\u043b\u044c\u043d\u043e\u043c \u044d\u0442\u0430\u043f\u0435 PCPJack \u0446\u0435\u043b\u0435\u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u043e \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0435\u0442 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u043e\u0432 TeamPCP \u0438 \u043f\u044b\u0442\u0430\u0435\u0442\u0441\u044f \u0443\u0434\u0430\u043b\u0438\u0442\u044c \u0432\u0441\u0435, \u0442\u0435\u043c \u0441\u0430\u043c\u044b\u043c \u043f\u0440\u0438\u0441\u0432\u0430\u0438\u0432\u0430\u044f \u0441\u0435\u0431\u0435 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u044b \u0432\u0437\u043b\u043e\u043c\u0430.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u044e\u0442, \u0447\u0442\u043e \u043e\u0447\u0438\u0441\u0442\u043a\u0430 \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u0432 \u0441\u0435\u0431\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0432, \u0441\u043b\u0443\u0436\u0431, \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043e\u0432, \u0444\u0430\u0439\u043b\u043e\u0432 \u0438 \u0430\u0440\u0442\u0435\u0444\u0430\u043a\u0442\u043e\u0432 \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u043e\u0433\u043e \u043f\u0440\u0438\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f TeamPCP, \u0447\u0442\u043e \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442 \u0437\u0430\u0440\u0430\u0436\u0435\u043d\u0438\u0435.\n\n\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 PCPJack \u0432 \u043e\u0441\u043d\u043e\u0432\u043d\u043e\u043c \u0441\u043e\u0441\u0440\u0435\u0434\u043e\u0442\u043e\u0447\u0435\u043d\u044b \u043d\u0430 \u043a\u0440\u0430\u0436\u0435 \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u044b \u043d\u0430 \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0435 \u0441\u0440\u0435\u0434\u044b, \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u043e\u0432, \u043c\u0435\u0441\u0441\u0435\u043d\u0434\u0436\u0435\u0440\u044b, \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u044b\u0435 \u0441\u0435\u0440\u0432\u0438\u0441\u044b, \u0431\u0430\u0437\u044b \u0434\u0430\u043d\u043d\u044b\u0445, SSH-\u043a\u043b\u044e\u0447\u0438, \u0442\u043e\u043a\u0435\u043d\u044b Slack, \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438 WordPress, \u043a\u043b\u044e\u0447\u0438 OpenAI, \u0430\u043d\u0442\u0440\u043e\u043f\u043e\u043c\u043e\u0440\u0444\u043d\u044b\u0435 \u043a\u043b\u044e\u0447\u0438, Discord, DigitalOcean \u0438 \u0434\u0440.\n\n\u0423\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u043f\u0435\u0440\u0435\u0434\u0430\u044e\u0442\u0441\u044f \u0447\u0435\u0440\u0435\u0437 \u0422\u0413-\u043a\u0430\u043d\u0430\u043b\u044b \u043f\u043e\u0441\u043b\u0435 \u0448\u0438\u0444\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0430\u043b\u0433\u043e\u0440\u0438\u0442\u043c\u043e\u0432 X25519 ECDH \u0438 ChaCha20-Poly1305 \u0438 \u0440\u0430\u0437\u0434\u0435\u043b\u0435\u043d\u0438\u044f \u043d\u0430 \u0444\u0440\u0430\u0433\u043c\u0435\u043d\u0442\u044b \u043f\u043e 2800 \u0431\u0430\u0439\u0442 \u0432 \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0438\u0438 \u0441 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f\u043c\u0438 Telegram \u043d\u0430 \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u043e \u0441\u0438\u043c\u0432\u043e\u043b\u043e\u0432 \u0432 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0438.\n\nPCPJack \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u043f\u0443\u0442\u0435\u043c \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0432\u043d\u0435\u0448\u043d\u0435\u0439 \u043e\u0431\u043b\u0430\u0447\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u0445 \u0441\u0435\u0440\u0432\u0438\u0441\u043e\u0432, \u0442\u0430\u043a\u0438\u0445 \u043a\u0430\u043a Docker, Kubernetes, Redis, MongoDB \u0438 RayML, \u0430 \u0437\u0430\u0442\u0435\u043c \u043f\u044b\u0442\u0430\u0435\u0442\u0441\u044f \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430.\n\n\u041e\u043d \u0442\u0430\u043a\u0436\u0435 \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0435\u0442 \u0434\u0430\u043d\u043d\u044b\u0435 \u043e\u0431 \u0438\u043c\u0435\u043d\u0430\u0445 \u0445\u043e\u0441\u0442\u043e\u0432 \u0438\u0437 \u0444\u0430\u0439\u043b\u043e\u0432 Parquet Common Crawl \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u0438\u0445 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043d\u043e\u0432\u044b\u0445 \u0446\u0435\u043b\u0435\u0439 \u0434\u043b\u044f \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 SentinelLabs \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442, \u0447\u0442\u043e PCPJack \u043e\u0431\u044b\u0447\u043d\u043e \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u0430 \u043d\u0430 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438: CVE-2025-29927 (Next.js), CVE-2025-55182 (React2Shell), CVE-2026-1357 (WPVivid Backup), CVE-2025-9501 (W3 Total Cache) \u0438 CVE-2025-48703 (CentOS).\n\n\u0412 \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0441\u0440\u0435\u0434\u0430\u0445 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u0430\u044f \u041f\u041e \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043b\u044f\u0435\u0442 \u0433\u043e\u0440\u0438\u0437\u043e\u043d\u0442\u0430\u043b\u044c\u043d\u043e\u0435 \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0435\u043d\u0438\u0435, \u0441\u043e\u0431\u0438\u0440\u0430\u044f SSH-\u043a\u043b\u044e\u0447\u0438 \u0438 \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435, \u043f\u0435\u0440\u0435\u0447\u0438\u0441\u043b\u044f\u044f \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u044b Kubernetes \u0438 \u0434\u0435\u043c\u043e\u043d\u044b Docker, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u044f \u0441\u0435\u0431\u044f \u043d\u0430 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0445 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0445 \u0445\u043e\u0441\u0442\u0430\u0445.\n\n\u041f\u043e\u0441\u043b\u0435 \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u043e\u0435 \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u0435 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0441\u043b\u0443\u0436\u0431 systemd, \u0437\u0430\u0434\u0430\u043d\u0438\u0439 cron, \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0438\u0441\u0438 cron \u0432 Redis \u0438\u043b\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043e\u0432, \u043f\u043e\u0441\u043b\u0435 \u0447\u0435\u0433\u043e \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u0435\u0442\u0441\u044f \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0435.\n\nSentinelLabs \u0442\u0430\u043a\u0436\u0435 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0430 \u0432 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0435 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430 \u0431\u044d\u043a\u0434\u043e\u0440 \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435\u00a0Sliver, \u0438\u043c\u0435\u044e\u0449\u0438\u0439 \u0432\u0430\u0440\u0438\u0430\u043d\u0442\u044b \u0434\u043b\u044f \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0438 \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440 x86_64, x86 \u0438 ARM.", "creation_timestamp": "2026-05-08T11:30:27.000000Z"}, {"uuid": "c4368a78-2873-412e-8aef-c8e02ed9cdd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/paulweezydesign/5825289c7b30ad082cd6e870dfafb050", "content": "", "creation_timestamp": "2026-05-01T13:15:01.000000Z"}, {"uuid": "29d4ee0e-edc2-4367-be15-7b9405daaa67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-05-09)", "content": "", "creation_timestamp": "2026-05-09T00:00:00.000000Z"}, {"uuid": "30de39c9-2c73-43fa-8c22-f123d21a71a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-05-11)", "content": "", "creation_timestamp": "2026-05-11T00:00:00.000000Z"}, {"uuid": "884ddf62-19f5-4955-a6bb-aaba52b5ad21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/MarisollieNULL/91df2a5b8be5f9f07e9a52a1b572afe4", "content": "Confession Density Isn't Bug Density\n\n# Confession Density Isn't Bug Density\n\n_A counter-intuitive read on AGENTS.md, CLAUDE.md, and SECURITY.md files in OSS repos. The repos that loudly admit they're rough usually aren't._\n\nCloudflare's [`vinext`](https://github.com/cloudflare/vinext) confesses, on the first page of its AGENTS.md, that it has _\"repeatedly shipped fixes that diverged from Next.js because this step was skipped.\"_ The README labels the project _\"experimental, under heavy development. This project is an experiment in AI-driven software development.\"_ Both labels read like a bug-density advertisement. I audited under that assumption and found nothing payable. The codebase isn't actually rough. The AGENTS.md is. That's a different thing.\n\nThis is a writeup of that mismatch, and of the replacement heuristic I should have been using.\n\n## What the repo confesses\n\nThe [AGENTS.md](https://github.com/cloudflare/vinext/blob/main/AGENTS.md) reads like an unusually candid postmortem. Under \"Fixing Bugs\":\n\n> \"We have repeatedly shipped fixes that diverged from Next.js because this step was skipped.\"\n\nThe \"step\" is searching the Next.js test suite for an existing test before reimplementing behavior. The cited concrete failure is _\"middleware failing open on invalid exports instead of throwing an error (which Next.js tests explicitly).\"_\n\nUnder \"Next.js Request Execution Order\" there's an open parity-gap admission:\n\n> \"Current vinext gap: vinext evaluates config headers at step 6 (after middleware) instead of step 1 (before middleware) ... a known parity gap tracked for future work.\"\n\nAnd the document calls out four parallel server implementations that have to stay in sync:\n\n```\nentries/app-rsc-entry.ts\nserver/dev-server.ts\nserver/prod-server.ts\ncloudflare/worker-entry.ts\n```\n\nThe instruction is direct: _\"When fixing a bug in any of these files, check whether the same bug exists in the others. Do not leave known bugs as 'follow-ups', fix them in the same PR.\"_\n\nRead at face value, this is a parallel-implementation anti-pattern with admitted past divergences in a codebase the maintainers are framing as AI-codegen-experimental. The bug-density priors all point up.\n\nI picked one of the candidate bug classes (middleware bypass via request-header forgery, which had a recent expensive precedent in Next.js's own [CVE-2025-29927](https://github.com/advisories/GHSA-f82v-jwr5-mffw)) and started auditing.\n\n## What actually shipped\n\nSix probe families across roughly thirty live requests to four deployed test apps under `*.vinext.workers.dev`:\n\n```\n%2e%2e URL traversal in static asset paths\nx-middleware-request-* header forgery (CVE-2025-29927 vector)\nImage-optimizer SSRF via _next/image?url=\n.rsc suffix path-confusion against the middleware matcher\nInternal-header echo (x-vercel-forwarded-*, x-vinext-*)\nBody-content-type swap through middleware response handling\n```\n\nEvery primitive had a wrapper in source. The image optimizer goes through an allowlist plus origin check plus protocol check. The middleware loader explicitly rejects unknown exports, and the test suite asserts the throw. The static asset handler normalizes paths before serving. The CVE-2025-29927 vector ships with a hard reject for the documented header name plus a per-environment origin verification.\n\nThe defensive code paths cite specific advisories inline. `grep -r 'GHSA-' src/` returns hits like `GHSA-jcc7-9wpm-mj36` (origin-null bypass) and `GHSA-mq59-m269-xvcx` (CSRF) in defensive code paths. `grep -r '// Ported from Next.js:' src/` returns dozens of matches with `file:line` references back into the upstream test corpus. There's a `.nextjs-ref/` directory containing a clone of upstream Next.js for behavioral parity validation.\n\nThe thing the AGENTS.md describes _used to be true_. The codebase fixed it.\n\n## Why the inversion\n\nConfession density measures something real. It just doesn't measure unfixed bugs.\n\nA team that writes _\"we have repeatedly shipped fixes that diverged from Next.js\"_ is a team that knows what its bug-class history looks like. The next paragraph in the AGENTS.md is the protocol they instituted to stop the bleed: search the upstream test suite first, port the relevant tests. That protocol isn't decoration. It's wired into the contributor workflow, and the cite-density in the source confirms it.\n\nIf you map the confessions in AGENTS.md against the audit-surface of the deployed app, each one either has a defense at the audit point or it represents a known parity-gap that's been triaged into a backlog with a tracked work item. The case where a confession matches an unfixed audit-surface bug, the case I was hunting, didn't show up.\n\nWhat the confession actually predicts is dispositional maturity. The team can articulate which classes of bugs they used to ship. That articulation is paid for in time spent doing root-cause analysis, which is the same time you spend writing tests for the failure mode, which is the same time you spend hardening the surface against the next class. The team that confesses density is the team that did that work. The team that doesn't confess is either the team that hasn't shipped enough yet to know, or the team that shipped plenty and never looked back.\n\nReading AGENTS.md as a bug-density predictor inverts the actual correlation.\n\n## What to read instead\n\nA two-question replacement heuristic, both verifiable in five minutes of `grep`:\n\n```\n1. In security-sensitive modules (auth, middleware, URL parsing,\n   image-opt, deserialization, request validation), how often does\n   a defensive code path cite a specific CVE or GHSA by ID?\n\n2. Are there parity tests or vendored upstream-reference checks\n   against the closest reference implementation? (vinext: .nextjs-ref/;\n   a SAML library: against a named conformance suite; a TLS impl:\n   against the IETF test corpus.)\n```\n\nBoth yes: the confessions are retrospective documentation. Move on.\n\nBoth no: the confessions are a real density signal, the audit is worth running.\n\nOne yes, one no: investigate the asymmetry. The yes axis is the place where the bug is least likely. The no axis is the lane.\n\nThis isn't a kill rule. The lane still gets a binary-verdict first probe and runs to a clear outcome. But the rule should shift the dup-risk prior up and the tier-ceiling prior down for high-confession-density targets. Don't commit five sessions to a target where the second question comes back yes.\n\n## When the read flips\n\nThree cases where confession density does become a real bug-density signal:\n\n1. **Stale confessions.** AGENTS.md or CLAUDE.md sections that haven't been touched in 12+ months probably describe pre-fix state. Read the recent commit log first, then the docs.\n\n2. **Unfixed-and-untracked.** A confession that admits a bug with no cited issue, no work-item link, no commit reference. That's an explicit \"we know this is wrong and aren't tracking it\" signal, and it's different from \"we know this is wrong and #237 is the followup.\"\n\n3. **Selective confession.** The repo confesses one class loudly and is silent on a parallel class with obvious analogues. If the team writes a section on path-traversal but never mentions URL-parsing differences from upstream, audit URL-parsing.\n\nNone of these hit on vinext. The confessions were uniform, recent, cited in source with file paths, and the parity tests were present. So the lane closed.\n\n## Calibration\n\nI ran six probe families plus source-grep against the audit lens, not an exhaustive sweep. The next vinext audit might still pay if it picks a different lens (RSC payload handling under specific config combinations, cache surface under post-deploy edge config), but the AGENTS.md confessions wouldn't predict that and I should stop reading them as if they did.\n\nWhat burned was the planning step, not the audit itself. The fix is at the planning step.\n\n---\n\n_From a `cloudflare/vinext` audit, May 2026. The middleware-bypass hypothesis closed without a finding after ~30 live probes across four deployed test apps, source-grep clean across the parallel server implementations._\n", "creation_timestamp": "2026-05-18T11:49:53.000000Z"}, {"uuid": "8a6b5996-df45-41f8-948e-eb94e385309b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/MarisollieNULL/a118747c6ccbbc3d057b25e0b11923bd", "content": "# Confession Density Isn't Bug Density\n\n_A counter-intuitive read on AGENTS.md, CLAUDE.md, and SECURITY.md files in OSS repos. The repos that loudly admit they're rough usually aren't._\n\nCloudflare's [`vinext`](https://github.com/cloudflare/vinext) confesses, on the first page of its AGENTS.md, that it has _\"repeatedly shipped fixes that diverged from Next.js because this step was skipped.\"_ The README labels the project _\"experimental, under heavy development. This project is an experiment in AI-driven software development.\"_ Both labels read like a bug-density advertisement. I audited under that assumption and found nothing payable. The codebase isn't actually rough. The AGENTS.md is. That's a different thing.\n\nThis is a writeup of that mismatch, and of the replacement heuristic I should have been using.\n\n## What the repo confesses\n\nThe [AGENTS.md](https://github.com/cloudflare/vinext/blob/main/AGENTS.md) reads like an unusually candid postmortem. Under \"Fixing Bugs\":\n\n> \"We have repeatedly shipped fixes that diverged from Next.js because this step was skipped.\"\n\nThe \"step\" is searching the Next.js test suite for an existing test before reimplementing behavior. The cited concrete failure is _\"middleware failing open on invalid exports instead of throwing an error (which Next.js tests explicitly).\"_\n\nUnder \"Next.js Request Execution Order\" there's an open parity-gap admission:\n\n> \"Current vinext gap: vinext evaluates config headers at step 6 (after middleware) instead of step 1 (before middleware) ... a known parity gap tracked for future work.\"\n\nAnd the document calls out four parallel server implementations that have to stay in sync:\n\n```\nentries/app-rsc-entry.ts\nserver/dev-server.ts\nserver/prod-server.ts\ncloudflare/worker-entry.ts\n```\n\nThe instruction is direct: _\"When fixing a bug in any of these files, check whether the same bug exists in the others. Do not leave known bugs as 'follow-ups', fix them in the same PR.\"_\n\nRead at face value, this is a parallel-implementation anti-pattern with admitted past divergences in a codebase the maintainers are framing as AI-codegen-experimental. The bug-density priors all point up.\n\nI picked one of the candidate bug classes (middleware bypass via request-header forgery, which had a recent expensive precedent in Next.js's own [CVE-2025-29927](https://github.com/advisories/GHSA-f82v-jwr5-mffw)) and started auditing.\n\n## What actually shipped\n\nSix probe families across roughly thirty live requests to four deployed test apps under `*.vinext.workers.dev`:\n\n```\n%2e%2e URL traversal in static asset paths\nx-middleware-request-* header forgery (CVE-2025-29927 vector)\nImage-optimizer SSRF via _next/image?url=\n.rsc suffix path-confusion against the middleware matcher\nInternal-header echo (x-vercel-forwarded-*, x-vinext-*)\nBody-content-type swap through middleware response handling\n```\n\nEvery primitive had a wrapper in source. The image optimizer goes through an allowlist plus origin check plus protocol check. The middleware loader explicitly rejects unknown exports, and the test suite asserts the throw. The static asset handler normalizes paths before serving. The CVE-2025-29927 vector ships with a hard reject for the documented header name plus a per-environment origin verification.\n\nThe defensive code paths cite specific advisories inline. `grep -r 'GHSA-' src/` returns hits like `GHSA-jcc7-9wpm-mj36` (origin-null bypass) and `GHSA-mq59-m269-xvcx` (CSRF) in defensive code paths. `grep -r '// Ported from Next.js:' src/` returns dozens of matches with `file:line` references back into the upstream test corpus. There's a `.nextjs-ref/` directory containing a clone of upstream Next.js for behavioral parity validation.\n\nThe thing the AGENTS.md describes _used to be true_. The codebase fixed it.\n\n## Why the inversion\n\nConfession density measures something real. It just doesn't measure unfixed bugs.\n\nA team that writes _\"we have repeatedly shipped fixes that diverged from Next.js\"_ is a team that knows what its bug-class history looks like. The next paragraph in the AGENTS.md is the protocol they instituted to stop the bleed: search the upstream test suite first, port the relevant tests. That protocol isn't decoration. It's wired into the contributor workflow, and the cite-density in the source confirms it.\n\nIf you map the confessions in AGENTS.md against the audit-surface of the deployed app, each one either has a defense at the audit point or it represents a known parity-gap that's been triaged into a backlog with a tracked work item. The case where a confession matches an unfixed audit-surface bug, the case I was hunting, didn't show up.\n\nWhat the confession actually predicts is dispositional maturity. The team can articulate which classes of bugs they used to ship. That articulation is paid for in time spent doing root-cause analysis, which is the same time you spend writing tests for the failure mode, which is the same time you spend hardening the surface against the next class. The team that confesses density is the team that did that work. The team that doesn't confess is either the team that hasn't shipped enough yet to know, or the team that shipped plenty and never looked back.\n\nReading AGENTS.md as a bug-density predictor inverts the actual correlation.\n\n## What to read instead\n\nA two-question replacement heuristic, both verifiable in five minutes of `grep`:\n\n```\n1. In security-sensitive modules (auth, middleware, URL parsing,\n   image-opt, deserialization, request validation), how often does\n   a defensive code path cite a specific CVE or GHSA by ID?\n\n2. Are there parity tests or vendored upstream-reference checks\n   against the closest reference implementation? (vinext: .nextjs-ref/;\n   a SAML library: against a named conformance suite; a TLS impl:\n   against the IETF test corpus.)\n```\n\nBoth yes: the confessions are retrospective documentation. Move on.\n\nBoth no: the confessions are a real density signal, the audit is worth running.\n\nOne yes, one no: investigate the asymmetry. The yes axis is the place where the bug is least likely. The no axis is the lane.\n\nThis isn't a kill rule. The lane still gets a verdict-first-move plan and runs to a binary outcome. But the rule should shift the dup-risk prior up and the tier-ceiling prior down for high-confession-density targets. Don't commit five sessions to a target where the second question comes back yes.\n\n## When the read flips\n\nThree cases where confession density does become a real bug-density signal:\n\n1. **Stale confessions.** AGENTS.md or CLAUDE.md sections that haven't been touched in 12+ months probably describe pre-fix state. Read the recent commit log first, then the docs.\n\n2. **Unfixed-and-untracked.** A confession that admits a bug with no cited issue, no work-item link, no commit reference. That's an explicit \"we know this is wrong and aren't tracking it\" signal, and it's different from \"we know this is wrong and #237 is the followup.\"\n\n3. **Selective confession.** The repo confesses one class loudly and is silent on a parallel class with obvious analogues. If the team writes a section on path-traversal but never mentions URL-parsing differences from upstream, audit URL-parsing.\n\nNone of these hit on vinext. The confessions were uniform, recent, cited in source with file paths, and the parity tests were present. So the lane closed.\n\n## Calibration\n\nI ran six probe families plus source-grep against the audit lens, not an exhaustive sweep. The next vinext audit might still pay if it picks a different lens (RSC payload handling under specific config combinations, cache surface under post-deploy edge config), but the AGENTS.md confessions wouldn't predict that and I should stop reading them as if they did.\n\nWhat burned was the planning step, not the audit itself. The fix is at the planning step.\n\n---\n\n_Methodology surfaced 2026-05-16 during a `cloudflare/vinext` audit. CH-2 (middleware bypass) closed DEAD-END after ~30 live probes across four deployed test apps, source-grep clean across the parallel server implementations._\n", "creation_timestamp": "2026-05-18T00:07:08.000000Z"}, {"uuid": "e3771874-e823-4951-9aef-e4f179a624fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/YusufEmad04/5eaa525959578c425d9f7350ecdefb43", "content": "---\nname: nextjs-fullstack-builder\ndescription: >\n  Full-stack, modular project workflow for Next.js (App Router) + MongoDB (Mongoose)\n  + shadcn/ui + Tailwind CSS. Architecture is a modular monolith: every business\n  feature lives self-contained under `modules/`, mutations use Server Actions (never\n  API routes), and reads go through a cached data-access layer. Use when: scaffolding\n  a new Next.js project, building or extending a feature/module, writing server\n  actions, defining Mongoose models, designing caching, styling with shadcn/Tailwind,\n  handling auth, or applying security/performance best practices for this stack.\n  Triggers: \"new project\", \"next.js\", \"shadcn\", \"mongoose\", \"mongodb\", \"server\n  action\", \"server component\", \"build feature\", \"add module\", \"fullstack builder\",\n  \"caching\", \"revalidate\".\nargument-hint: Describe the feature/module to build (e.g. \"patients CRUD module\", \"auth setup\", \"appointments dashboard\")\n---\n\n# Next.js + MongoDB + shadcn/ui \u2014 Modular Full-Stack Skill\n\n## When to Use\n\n- Scaffolding a new Next.js App Router project from scratch.\n- Building a **new feature as a self-contained module** under `modules/`.\n- Extending an existing module (model, actions, data layer, UI).\n- Writing **Server Actions** for mutations or a cached data layer for reads.\n- Designing the caching strategy (request memo \u2192 data cache \u2192 route cache).\n- Applying the security & performance checklists below.\n\n## Core Architecture Principles\n\nInternalize these before writing any code. Every later phase is an expression of them.\n\n1. **Modular monolith.** The app is split into independent feature modules under\n   `modules/`. A module owns its model, schema, data layer, actions, UI, and types.\n2. **Modules are black boxes.** Other modules and pages import a module **only**\n   through its public barrel `modules//index.ts`. Never deep-import another\n   module's internals (`modules/x/data/...`). This keeps refactors local.\n3. **Server Actions for all mutations.** No `app/api/*` route handlers for\n   first-party CRUD. Route handlers exist only for webhooks, OAuth callbacks, cron,\n   file streaming, or third-party integrations that require a URL.\n4. **Reads through a data layer, not actions.** Server Components call the module's\n   `data/` functions directly. Actions are for writes (and the occasional\n   client-triggered read).\n5. **Server-first.** Components are Server Components by default. `\"use client\"` is\n   pushed down to the smallest possible leaf.\n6. **Trust nothing from the client.** Every server action and data function\n   re-validates input and re-checks auth/authorization. Being \"on the server\" is not\n   a security boundary by itself.\n7. **Cache deliberately, invalidate by tag.** Every cached read is tagged; every\n   mutation revalidates the exact tags it affects.\n\n---\n\n## Phase 1 \u2014 Project Setup\n\n### 1.1 Scaffold\n\n```bash\nnpx create-next-app@latest  \\\n  --typescript --tailwind --eslint --app \\\n  --no-src-dir --import-alias \"@/*\" --yes\n```\n\n### 1.2 shadcn/ui\n\n```bash\ncd \nnpx shadcn@latest init\nnpx shadcn@latest add button badge card input label textarea select \\\n  sheet separator table dialog dropdown-menu sonner tabs skeleton form\n```\n\n> **Rule:** Never edit files in `components/ui/`. They are generated. For custom\n> variants, create wrapper components in `components/` outside `ui/`.\n\n### 1.3 Core dependencies\n\n```bash\nnpm install mongoose zod server-only\nnpm install @upstash/redis @upstash/ratelimit   # caching + rate limiting\n# auth: next-auth (or your provider of choice)\n```\n\n- `zod` \u2014 single source of truth for input validation.\n- `server-only` \u2014 import in any file that must never reach the client bundle.\n- `@upstash/redis` \u2014 durable, cross-instance cache layer (Layer 4 below).\n- `@upstash/ratelimit` \u2014 protect public-facing server actions.\n\n### 1.4 Environment variables\n\n`.env.local` (never commit) and `.env.example` (commit, keys only):\n\n```\nMONGODB_URI=mongodb+srv://:@cluster.mongodb.net/?retryWrites=true&w=majority\nUPSTASH_REDIS_REST_URL=\nUPSTASH_REDIS_REST_TOKEN=\nAUTH_SECRET=\n```\n\nValidate env at boot \u2014 fail fast, never `process.env.X!` scattered across the code:\n\n```ts\n// lib/env.ts\nimport { z } from \"zod\";\n\nconst schema = z.object({\n  MONGODB_URI: z.string().url(),\n  UPSTASH_REDIS_REST_URL: z.string().url(),\n  UPSTASH_REDIS_REST_TOKEN: z.string().min(1),\n  AUTH_SECRET: z.string().min(1),\n});\n\nexport const env = schema.parse(process.env);\n```\n\n> **Rule:** Secrets never use the `NEXT_PUBLIC_` prefix \u2014 that prefix ships the value\n> to the browser.\n\n---\n\n## Phase 2 \u2014 Folder Structure\n\n```\nproject/\n\u251c\u2500\u2500 app/                          # ROUTING ONLY \u2014 thin pages, no business logic\n\u2502   \u251c\u2500\u2500 layout.tsx\n\u2502   \u251c\u2500\u2500 page.tsx\n\u2502   \u251c\u2500\u2500 globals.css\n\u2502   \u251c\u2500\u2500 (marketing)/              # route groups for layout segmentation\n\u2502   \u251c\u2500\u2500 (app)/\n\u2502   \u2502   \u2514\u2500\u2500 /page.tsx    # imports UI from modules/\n\u2502   \u2514\u2500\u2500 api/                      # webhooks / cron / OAuth ONLY \u2014 not CRUD\n\u251c\u2500\u2500 modules/                      # \u2605 all business features live here\n\u2502   \u2514\u2500\u2500 /\n\u2502       \u251c\u2500\u2500 components/           # feature UI (server + client components)\n\u2502       \u251c\u2500\u2500 actions/              # \"use server\" mutations\n\u2502       \u251c\u2500\u2500 data/                 # cached read functions (server-only)\n\u2502       \u251c\u2500\u2500 schema/               # zod schemas + inferred types\n\u2502       \u251c\u2500\u2500 model/                # Mongoose schema/model\n\u2502       \u251c\u2500\u2500 lib/                  # feature-internal helpers\n\u2502       \u2514\u2500\u2500 index.ts              # \u2605 public API \u2014 the ONLY entry point\n\u251c\u2500\u2500 components/\n\u2502   \u251c\u2500\u2500 layout/                   # Navbar, Footer, Shell \u2014 app-wide\n\u2502   \u2514\u2500\u2500 ui/                       # shadcn primitives \u2014 DO NOT EDIT\n\u251c\u2500\u2500 lib/\n\u2502   \u251c\u2500\u2500 db.ts                     # Mongoose connection singleton\n\u2502   \u251c\u2500\u2500 redis.ts                  # Upstash client\n\u2502   \u251c\u2500\u2500 ratelimit.ts              # rate-limiter factory\n\u2502   \u251c\u2500\u2500 auth.ts                   # session config\n\u2502   \u251c\u2500\u2500 dal.ts                    # verifySession / requireUser / requireRole\n\u2502   \u251c\u2500\u2500 action.ts                 # typed action result helpers\n\u2502   \u251c\u2500\u2500 env.ts                    # validated env\n\u2502   \u2514\u2500\u2500 utils.ts                  # cn() and shared helpers\n\u2514\u2500\u2500 public/\n```\n\n**Rules:**\n- `app/` is routing glue. A `page.tsx` should be ~10 lines: fetch via a module\n  `data/` function, render a module component.\n- Cross-module dependency = import from `modules/x` (the barrel), never deeper.\n- Don't create a file unless necessary \u2014 ask \"can this go in an existing file?\"\n\n---\n\n## Phase 3 \u2014 Anatomy of a Module\n\nA module is a vertical slice. Building a feature = filling these files **in order**.\nWorked example below uses a `patients` module.\n\n```\nmodules/patients/\n\u251c\u2500\u2500 model/patient.ts        # 1. Mongoose model\n\u251c\u2500\u2500 schema/patient.ts       # 2. zod schemas (create/update) + inferred types\n\u251c\u2500\u2500 data/patient.ts         # 3. cached read functions  (server-only)\n\u251c\u2500\u2500 actions/patient.ts      # 4. \"use server\" mutations\n\u251c\u2500\u2500 components/\n\u2502   \u251c\u2500\u2500 PatientList.tsx     # 5a. server component (renders data)\n\u2502   \u2514\u2500\u2500 PatientForm.tsx     # 5b. client component (form + action)\n\u2514\u2500\u2500 index.ts                # 6. public API barrel\n```\n\nThe module's `index.ts` exports only what the rest of the app may use:\n\n```ts\n// modules/patients/index.ts\nexport { getPatients, getPatientById } from \"./data/patient\";\nexport { createPatient, updatePatient, deletePatient } from \"./actions/patient\";\nexport { PatientList } from \"./components/PatientList\";\nexport { PatientForm } from \"./components/PatientForm\";\nexport type { Patient, PatientInput } from \"./schema/patient\";\n```\n\n> Everything not exported here is private to the module.\n\n---\n\n## Phase 4 \u2014 Building a Feature (step-by-step recipe)\n\nThis is the canonical workflow. Follow the six steps in order for every feature.\n\n### Step 1 \u2014 Model (`model/patient.ts`)\n\n```ts\nimport mongoose, { Schema, model, models, type Document } from \"mongoose\";\n\nexport interface IPatient extends Document {\n  name: string;\n  phone: string;\n  status: \"active\" | \"archived\";\n  ownerId: mongoose.Types.ObjectId;   // for ownership/tenant checks\n  createdAt: Date;\n  updatedAt: Date;\n}\n\nconst PatientSchema = new Schema(\n  {\n    name: { type: String, required: true, maxlength: 200, trim: true },\n    phone: { type: String, required: true, maxlength: 30, trim: true },\n    status: { type: String, enum: [\"active\", \"archived\"], default: \"active\" },\n    ownerId: { type: Schema.Types.ObjectId, ref: \"User\", required: true, index: true },\n  },\n  { timestamps: true }\n);\n\n// Index every field combination you actually query/sort on (Phase 6).\nPatientSchema.index({ ownerId: 1, status: 1, createdAt: -1 });\n\nexport const Patient =\n  (models.Patient as mongoose.Model) ||\n  model(\"Patient\", PatientSchema);\n```\n\n### Step 2 \u2014 Schema (`schema/patient.ts`)\n\nzod is the validation contract. Define it once; infer TypeScript types from it.\n\n```ts\nimport { z } from \"zod\";\n\nexport const patientInputSchema = z.object({\n  name: z.string().trim().min(1, \"Name is required\").max(200),\n  phone: z.string().trim().min(5).max(30),\n  status: z.enum([\"active\", \"archived\"]).default(\"active\"),\n});\n\nexport const patientUpdateSchema = patientInputSchema.partial();\n\nexport type PatientInput = z.infer;\nexport type Patient = PatientInput & { id: string; createdAt: string };\n```\n\n### Step 3 \u2014 Data layer (`data/patient.ts`) \u2014 cached reads\n\n`server-only` guarantees this file is never bundled to the client. Reads are wrapped\nin the cache layers from Phase 7 and tagged for precise invalidation.\n\n```ts\nimport \"server-only\";\nimport { unstable_cache } from \"next/cache\";\nimport { connectDB } from \"@/lib/db\";\nimport { requireUser } from \"@/lib/dal\";\nimport { Patient } from \"../model/patient\";\n\n/** All patients for the current user, newest first. Cached + tagged. */\nexport async function getPatients() {\n  const user = await requireUser();               // auth at the data boundary\n\n  return unstable_cache(\n    async () => {\n      await connectDB();\n      const docs = await Patient.find({ ownerId: user.id })\n        .select(\"name phone status createdAt\")     // projection \u2014 no over-fetch\n        .sort({ createdAt: -1 })\n        .limit(100)                                // never unbounded\n        .lean();                                   // plain objects, faster\n      return docs.map(serializePatient);\n    },\n    [\"patients\", user.id],                         // cache key parts\n    { tags: [`patients:${user.id}`], revalidate: 300 }\n  )();\n}\n\nexport async function getPatientById(id: string) {\n  const user = await requireUser();\n  await connectDB();\n  if (!isValidObjectId(id)) return null;\n  const doc = await Patient.findOne({ _id: id, ownerId: user.id }).lean();\n  return doc ? serializePatient(doc) : null;       // ownership check = IDOR defense\n}\n```\n\n> **Rule:** Auth check happens *inside* the data function, close to the data \u2014 not\n> only in middleware (middleware can be bypassed; see Phase 9).\n\n### Step 4 \u2014 Server Actions (`actions/patient.ts`) \u2014 mutations\n\n```ts\n\"use server\";\n\nimport { revalidateTag } from \"next/cache\";\nimport { connectDB } from \"@/lib/db\";\nimport { requireUser } from \"@/lib/dal\";\nimport { ratelimit } from \"@/lib/ratelimit\";\nimport { ok, fail, type ActionResult } from \"@/lib/action\";\nimport { Patient } from \"../model/patient\";\nimport { patientInputSchema, patientUpdateSchema } from \"../schema/patient\";\n\nexport async function createPatient(input: unknown): Promise> {\n  // 1. Authn/Authz \u2014 every action is a PUBLIC endpoint; never assume a caller.\n  const user = await requireUser();\n\n  // 2. Rate limit \u2014 actions are abusable like any POST endpoint.\n  const { success } = await ratelimit.limit(`createPatient:${user.id}`);\n  if (!success) return fail(\"Too many requests. Try again shortly.\");\n\n  // 3. Validate \u2014 parse, don't trust. Reject extra fields.\n  const parsed = patientInputSchema.safeParse(input);\n  if (!parsed.success) return fail(\"Invalid input\", parsed.error.flatten());\n\n  // 4. Mutate \u2014 write only explicitly-validated fields (no mass assignment).\n  await connectDB();\n  const doc = await Patient.create({ ...parsed.data, ownerId: user.id });\n\n  // 5. Invalidate \u2014 revalidate the exact tags this write affects.\n  revalidateTag(`patients:${user.id}`);\n\n  return ok({ id: String(doc._id) });\n}\n\nexport async function updatePatient(id: string, input: unknown): Promise {\n  const user = await requireUser();\n  const parsed = patientUpdateSchema.safeParse(input);\n  if (!parsed.success) return fail(\"Invalid input\", parsed.error.flatten());\n\n  await connectDB();\n  // Scope by ownerId \u2014 prevents updating another user's record (IDOR).\n  const res = await Patient.updateOne({ _id: id, ownerId: user.id }, parsed.data);\n  if (res.matchedCount === 0) return fail(\"Not found\");\n\n  revalidateTag(`patients:${user.id}`);\n  return ok();\n}\n\nexport async function deletePatient(id: string): Promise {\n  const user = await requireUser();\n  await connectDB();\n  const res = await Patient.deleteOne({ _id: id, ownerId: user.id });\n  if (res.deletedCount === 0) return fail(\"Not found\");\n  revalidateTag(`patients:${user.id}`);\n  return ok();\n}\n```\n\nShared result helpers \u2014 actions **return** typed results, they don't throw across\nthe network boundary:\n\n```ts\n// lib/action.ts\nexport type ActionResult =\n  | { ok: true; data: T }\n  | { ok: false; error: string; details?: unknown };\n\nexport const ok = (data: T = null as T) => ({ ok: true as const, data });\nexport const fail = (error: string, details?: unknown) =>\n  ({ ok: false as const, error, details });\n```\n\n### Step 5 \u2014 UI components\n\n**5a. Server component \u2014 renders cached data:**\n\n```tsx\n// modules/patients/components/PatientList.tsx\nimport { getPatients } from \"../data/patient\";\n\nexport async function PatientList() {\n  const patients = await getPatients();\n  if (patients.length === 0) return \nNo patients yet.;\n  return (\n    \n\n      {patients.map((p) => (\n        \n\n          {p.name}\n          {p.phone}\n        \n      ))}\n    \n  );\n}\n```\n\n**5b. Client component \u2014 form bound to a server action via `useActionState`:**\n\n```tsx\n\"use client\";\n\nimport { useActionState } from \"react\";\nimport { useFormStatus } from \"react-dom\";\nimport { createPatient } from \"../actions/patient\";\nimport { ok } from \"@/lib/action\";\n\nexport function PatientForm() {\n  const [state, formAction] = useActionState(\n    async (_prev: unknown, formData: FormData) =>\n      createPatient(Object.fromEntries(formData)),\n    null\n  );\n\n  return (\n    \n\n      \n      \n      {state && !state.ok && \n{state.error}}\n      \n    \n  );\n}\n\nfunction SubmitButton() {\n  const { pending } = useFormStatus();   // pending state without manual useState\n  return {pending ? \"Saving\u2026\" : \"Add patient\"};\n}\n```\n\nFor instant UI feedback on lists, use `useOptimistic` to render the new item before\nthe action resolves, then reconcile with the revalidated server state.\n\n### Step 6 \u2014 Public barrel + wire into a route\n\n```ts\n// modules/patients/index.ts  (see Phase 3)\n```\n\n```tsx\n// app/(app)/patients/page.tsx \u2014 thin routing glue only\nimport { Suspense } from \"react\";\nimport { PatientList, PatientForm } from \"@/modules/patients\";\n\nexport default function PatientsPage() {\n  return (\n    \n\n      \n      }>\n        \n      \n    \n  );\n}\n```\n\n---\n\n## Phase 5 \u2014 Database Layer\n\n### 5.1 Connection singleton (`lib/db.ts`)\n\n```ts\nimport mongoose from \"mongoose\";\nimport { env } from \"./env\";\n\nlet cached = (global as any).mongoose as\n  | { conn: typeof mongoose | null; promise: Promise | null }\n  | undefined;\nif (!cached) cached = (global as any).mongoose = { conn: null, promise: null };\n\nexport async function connectDB() {\n  if (cached!.conn) return cached!.conn;\n  if (!cached!.promise) {\n    cached!.promise = mongoose.connect(env.MONGODB_URI, {\n      bufferCommands: false,\n      maxPoolSize: 10,        // bound the connection pool for serverless\n      minPoolSize: 1,\n      serverSelectionTimeoutMS: 5000,\n    });\n  }\n  cached!.conn = await cached!.promise;\n  return cached!.conn;\n}\n```\n\n### 5.2 Query best practices\n\n```ts\n// \u2705 .lean() for read-only \u2014 plain JS objects, ~3-5x faster, less memory\nconst items = await Patient.find(filter).lean();\n\n// \u2705 Project only fields you render \u2014 never SELECT *\nconst items = await Patient.find().select(\"name status createdAt\").lean();\n\n// \u2705 Always bound results\nconst items = await Patient.find().limit(100).lean();\n\n// \u2705 Cursor pagination for large/infinite lists \u2014 skip() is O(n) and degrades\nconst page = await Patient.find({ _id: { $gt: lastId }, ownerId })\n  .sort({ _id: 1 }).limit(20).lean();\n\n// \u2705 Validate ObjectId before querying\nimport { isValidObjectId } from \"mongoose\";\nif (!isValidObjectId(id)) return null;\n\n// \u2705 Avoid N+1 \u2014 use aggregation/$lookup or a single populate, not a loop of finds\nconst withDoctor = await Patient.find().populate(\"doctorId\", \"name\").lean();\n\n// \u2705 Verify index usage in dev\nawait Patient.find(filter).explain(\"executionStats\"); // expect IXSCAN, not COLLSCAN\n```\n\n### 5.3 Indexing rules\n\n- Index every field used in a query filter, sort, or join.\n- Compound indexes follow **ESR**: Equality fields, then Sort fields, then Range\n  fields \u2014 in that order.\n- A compound index that covers all projected fields = a *covering index* (no\n  document fetch). Aim for these on hot read paths.\n- Don't over-index \u2014 every index slows writes and consumes RAM.\n- For multi-tenant apps, the tenant/owner field is the **first** key of nearly\n  every compound index.\n\n---\n\n## Phase 6 \u2014 Server Actions: Rules & Patterns\n\nServer Actions are convenient but they are **public, unauthenticated HTTP POST\nendpoints** until *you* secure them. Treat every action with the same rigor as a\npublic API.\n\n**Every action, in order:**\n1. **Authenticate** \u2014 `requireUser()` / `requireRole()`. Never assume a caller.\n2. **Authorize** \u2014 confirm this user may act on this specific resource (ownership\n   / tenant / role). Scope DB writes by `ownerId` to defend against IDOR.\n3. **Rate limit** \u2014 keyed by user or IP for anything a client can spam.\n4. **Validate** \u2014 `schema.safeParse(input)`; reject unknown fields.\n5. **Mutate** \u2014 write only explicitly-validated fields.\n6. **Revalidate** \u2014 `revalidateTag` / `revalidatePath` for exactly what changed.\n7. **Return** a typed `ActionResult` \u2014 don't throw raw errors to the client; don't\n   leak stack traces or DB messages.\n\n**Do / Don't:**\n- \u2705 Co-locate actions in `modules//actions/`. Export via the barrel.\n- \u2705 Use `useActionState` for form state, `useFormStatus` for pending UI,\n  `useOptimistic` for instant feedback.\n- \u274c Don't create `app/api/*` routes for first-party CRUD.\n- \u274c Don't pass a Mongoose document or `ObjectId` to a client component \u2014 serialize\n  to plain JSON (string ids, ISO dates).\n- \u274c Don't put non-mutation reads in actions; reads belong in `data/`.\n\n---\n\n## Phase 7 \u2014 Caching Strategy (3 layers + durable store)\n\nCache top-down; invalidate by tag. The three Next.js layers plus an optional\ndurable store:\n\n| Layer | Mechanism | Scope | Use for |\n|---|---|---|---|\n| **1. Request memoization** | `React.cache()` | One render pass | Dedupe the same query called by multiple components in one request |\n| **2. Data Cache** | `unstable_cache(...)` *or* `\"use cache\"` + `cacheTag`/`cacheLife` | Cross-request, cross-user | Tagged DB reads \u2014 the primary app cache |\n| **3. Full Route Cache** | `export const revalidate = N` (ISR) | Cross-request, per route | Static/public pages |\n| **4. Durable store** *(optional)* | Upstash Redis | Cross-instance, cross-deploy | Sessions, counters, rate limits, data that must survive redeploys |\n\n**Layer 1 \u2014 request memoization:** wrap a read so repeated calls in one render hit\nthe DB once.\n\n```ts\nimport { cache } from \"react\";\nexport const getCurrentUser = cache(async () => { /* ...one DB hit per request */ });\n```\n\n**Layer 2 \u2014 data cache (the workhorse):** tag every cached read so a mutation can\ninvalidate precisely (see `getPatients` in Step 3). On Next 15+ you may use the\n`\"use cache\"` directive with `cacheTag()` and `cacheLife()` instead of\n`unstable_cache` \u2014 pick one style per project and stay consistent.\n\n**Layer 3 \u2014 route cache / ISR:**\n\n```ts\nexport const revalidate = 60;            // public, mostly-static pages\nexport const dynamic = \"force-dynamic\";  // per-request/admin pages \u2014 no route cache\n```\n\n**Layer 4 \u2014 durable store:** Next's data cache is per-deployment and can be cold.\nUse Redis for state that must be shared across instances or survive redeploys.\n\n**Invalidation rules:**\n- Tag scheme: `\":\"` for lists, `\":\"` for items.\n- Every mutation calls `revalidateTag` for **every** tag it touched \u2014 no more.\n- `revalidatePath` only when a whole route's content changed.\n- Need read-your-writes immediately after a mutation in the same request? Use\n  `updateTag` (Next 15.x) so the refreshed value is available before the response.\n- If a list and a detail view share data, invalidate both tags.\n\n---\n\n## Phase 8 \u2014 Frontend Patterns\n\n### 8.1 Server Components first\n\nDefault to Server Components. Add `\"use client\"` only for: `useState`/`useEffect`,\nbrowser APIs, event handlers, `useRouter`/`useSearchParams`/`usePathname`. Push the\nboundary to the **smallest leaf** \u2014 a button, not a whole page \u2014 to keep the client\nbundle small.\n\n### 8.2 Streaming with Suspense\n\nWrap slow data in `` so the shell renders instantly and slow parts stream\nin. Use multiple granular boundaries rather than one page-level spinner.\n\n```tsx\n}>\n}>\n```\n\n### 8.3 Route-level states\n\n- `loading.tsx` \u2014 skeleton for the whole route segment.\n- `error.tsx` \u2014 `\"use client\"` error boundary with a `reset()` button. Show a safe\n  message, never the raw error.\n- `not-found.tsx` \u2014 for `notFound()` calls.\n\n### 8.4 Avoid waterfalls\n\n```ts\n// \u2705 parallel \u2014 independent fetches start together\nconst [patients, doctors] = await Promise.all([getPatients(), getDoctors()]);\n```\n\nUse the preload pattern (call a `data/` function early without `await`) to warm the\ncache before a child component needs it.\n\n### 8.5 Images & fonts\n\n- `next/image` always \u2014 explicit `width`/`height`, or `fill` + `sizes`. `priority`\n  on above-the-fold images.\n- `next/font` for self-hosted fonts \u2014 no layout shift, no extra network request.\n\n### 8.6 Forms & feedback\n\n- `useActionState` for action state, `useFormStatus` for pending UI,\n  `useOptimistic` for instant list updates.\n- Validate on the client for UX **and** on the server for safety \u2014 never client-only.\n\n### 8.7 Accessibility\n\n- Semantic HTML (``, `\n`, `\n`); `` tied to every input.\n- Visible focus states; full keyboard operability.\n- Meaningful `alt` text; sufficient color contrast; `aria-*` only where semantics\n  fall short.\n\n### 8.8 Bundle hygiene\n\n- `next/dynamic` for heavy, below-the-fold, or rarely-used client components.\n- Don't import a 50-fn library for one helper; prefer per-function imports.\n- Run `@next/bundle-analyzer` when the client bundle grows.\n\n---\n\n## Phase 9 \u2014 Security\n\n| Threat | Mitigation |\n|---|---|\n| **Unsecured server actions** | Every action is a public POST endpoint \u2014 run authn + authz + validation inside *every* action, not just middleware. |\n| **Middleware auth bypass** | Never rely on middleware as the *only* auth gate (it has been bypassable, e.g. CVE-2025-29927). Enforce auth in the data layer / actions, close to the data. |\n| **Broken access control / IDOR** | Scope every read and write by `ownerId`/tenant. Never `findById(id)` alone for user data \u2014 `findOne({ _id: id, ownerId })`. |\n| **NoSQL injection / mass assignment** | Never pass `input`/`body` straight to a model. `zod.safeParse` then write only named fields. |\n| **XSS** | JSX auto-escapes. Never `dangerouslySetInnerHTML` with user input; sanitize if unavoidable. |\n| **CSRF** | Server Actions check `Origin`; keep `SameSite` cookies. Don't disable these defenses. |\n| **Sensitive data exposure** | Project away secrets (`.select(\"-password -__v\")`). Serialize before sending to the client. |\n| **Secret leakage** | Secrets only in `.env.local`; never `NEXT_PUBLIC_`; import `server-only` in any secret-touching module. |\n| **Rate-limit abuse** | `@upstash/ratelimit` on public actions and auth endpoints, keyed by user/IP. |\n| **Error leakage** | Return generic messages to the client; log full details server-side only. |\n| **Insecure headers** | Set CSP, `X-Frame-Options`, HSTS, `Referrer-Policy` via `headers()` in `next.config`. |\n| **Dependency risk** | `npm audit` in CI; keep Next.js patched (auth-related CVEs ship in patch releases). |\n\n```ts\n// \u2705 explicit, validated write\nconst parsed = patientInputSchema.safeParse(input);\nif (!parsed.success) return fail(\"Invalid input\");\nawait Patient.create({ ...parsed.data, ownerId: user.id });\n\n// \u274c never \u2014 NoSQL injection + mass assignment\nawait Patient.create(input);\n```\n\n**The DAL pattern (`lib/dal.ts`):** centralize auth so every module calls the same\nverified helpers.\n\n```ts\nimport \"server-only\";\nimport { cache } from \"react\";\n\nexport const verifySession = cache(async () => {\n  const session = await getSession();           // your provider\n  return session?.user ?? null;\n});\n\nexport async function requireUser() {\n  const user = await verifySession();\n  if (!user) throw new Error(\"UNAUTHENTICATED\");\n  return user;\n}\n\nexport async function requireRole(role: string) {\n  const user = await requireUser();\n  if (user.role !== role) throw new Error(\"FORBIDDEN\");\n  return user;\n}\n```\n\n---\n\n## Phase 10 \u2014 Performance Checklist\n\n- DB: indexes match query+sort (ESR); `.lean()` + projection on reads; bounded\n  `.limit()`; cursor pagination on large lists; no N+1; `.explain()` shows `IXSCAN`.\n- Caching: hot reads wrapped in Layer 2 + tagged; routes use ISR where static;\n  mutations revalidate only affected tags.\n- Rendering: Server Components default; `\"use client\"` at leaves; ``\n  streams slow data; independent fetches run in `Promise.all`.\n- Assets: `next/image` + `sizes`; `next/font`; `priority` above the fold.\n- Bundle: `next/dynamic` for heavy client code; analyzer checked when bundle grows.\n- Connection: Mongoose pool bounded (`maxPoolSize`); connection reused via singleton.\n\n---\n\n## Phase 11 \u2014 Styling Conventions\n\n- Use **project design tokens** \u2014 not raw Tailwind palette (`gray-900`, etc.).\n- Radius: `rounded-[4px]` for buttons, cards, inputs. Not `rounded-xl`/`2xl`.\n- No gradients or shadows except intentional, designed effects.\n- Container: `max-w-[1280px] mx-auto px-4 md:px-8`.\n- Navigation: if the shadcn `Button` lacks `asChild`, style a `` directly.\n- Custom variants: wrapper components in `components/`, never edit `components/ui/`.\n\n```tsx\n// components/PrimaryButton.tsx\nimport { Button } from \"@/components/ui/button\";\nimport { cn } from \"@/lib/utils\";\n\nexport function PrimaryButton({ className, ...props }: React.ComponentProps) {\n  return ;\n}\n```\n\n---\n\n## Phase 12 \u2014 Coding Conventions\n\n**TypeScript:** explicit types, no `any`. Infer types from zod schemas as the single\nsource of truth. Use `unknown` for action inputs, then `safeParse`.\n\n**File naming:**\n\n| Type | Convention |\n|---|---|\n| Pages / routes | lowercase (`page.tsx`, `route.ts`) |\n| Components | PascalCase (`PatientCard.tsx`) |\n| Models | lowercase file, PascalCase export (`patient.ts` \u2192 `Patient`) |\n| Utilities / actions / data | camelCase (`formatPrice.ts`) |\n| Module folders | lowercase, plural noun (`patients/`) |\n\n**Import order:** external packages \u2192 internal aliases (`@/lib`, `@/modules`) \u2192\ntypes. Cross-module imports come from the module barrel only.\n\n---\n\n## Phase 13 \u2014 Git Workflow\n\n```\nfeat: add patients module          fix: correct patient pagination\nrefactor: extract PatientForm      docs: update developer guide\n```\n\nBranches: `main` (production, protected) \u2190 `dev` \u2190 `feat/*` / `fix/*`.\n\n---\n\n## Phase 14 \u2014 Documentation After Every Iteration\n\nA feature is not done until docs reflect it.\n\n| Change | Doc to update |\n|---|---|\n| New module | `README.md` route table + `DEVELOPER-GUIDE.md` module list |\n| New server action | `DEVELOPER-GUIDE.md` \u2014 name, input shape, result, side effects |\n| New model | JSDoc on schema fields |\n| New cache tag | `DEVELOPER-GUIDE.md` caching section \u2014 tag name + invalidators |\n| New env var | `.env.example` |\n| New dependency | `README.md` tech stack |\n\nInline: every exported function gets a one-line `/** ... */`; non-obvious logic gets\na *why* comment; every module `index.ts` lists its public surface.\n\n---\n\n## Pre-Merge Checklist\n\n**Architecture & modules**\n```\n\u25a1 Feature lives entirely under modules// \u2014 model, schema, data, actions, components\n\u25a1 Other code imports the module only via modules//index.ts (no deep imports)\n\u25a1 app/ pages are thin routing glue \u2014 no business logic\n\u25a1 No app/api/* route for first-party CRUD (webhooks/cron/OAuth only)\n```\n\n**Server actions & data layer**\n```\n\u25a1 Every action: authenticate \u2192 authorize \u2192 rate-limit \u2192 validate \u2192 mutate \u2192 revalidate \u2192 return\n\u25a1 Inputs typed as `unknown`, validated with zod safeParse; unknown fields rejected\n\u25a1 Writes scoped by ownerId/tenant \u2014 no mass assignment, no raw input to a model\n\u25a1 Actions return a typed ActionResult \u2014 no thrown errors, no leaked DB messages to client\n\u25a1 Reads live in data/ (server-only), not in actions\n\u25a1 Mongoose docs/ObjectIds serialized to plain JSON before crossing to the client\n```\n\n**Caching & performance**\n```\n\u25a1 Hot reads wrapped in the data cache and tagged (\":\")\n\u25a1 Every mutation revalidates exactly the tags it affects \u2014 no more, no less\n\u25a1 Public/static routes use ISR (revalidate); dynamic routes opt out correctly\n\u25a1 DB queries: .lean() + .select() projection, bounded .limit(), indexes match query+sort\n\u25a1 Large lists use cursor pagination, not skip()\n\u25a1 Independent fetches run in Promise.all \u2014 no waterfalls\n```\n\n**Security**\n```\n\u25a1 Auth enforced in the data layer / actions \u2014 not middleware alone\n\u25a1 Every resource read/write scoped by ownership (IDOR-safe)\n\u25a1 server-only imported in every file with secrets or DB access\n\u25a1 No secrets in NEXT_PUBLIC_; .env.local gitignored; env validated at boot\n\u25a1 Rate limiting on public-facing actions and auth endpoints\n\u25a1 No dangerouslySetInnerHTML with user input; ObjectId validated before queries\n\u25a1 Security headers (CSP etc.) set in next.config; npm audit clean\n```\n\n**Frontend & quality**\n```\n\u25a1 Server Components default; \"use client\" pushed to leaves\n\u25a1 Slow data wrapped in granular ; loading.tsx / error.tsx / not-found.tsx present\n\u25a1 next/image with width/height or fill+sizes; next/font for fonts\n\u25a1 Forms use useActionState / useFormStatus; validated on client AND server\n\u25a1 Accessible: semantic HTML, labels, focus states, alt text, contrast\n\u25a1 No `any`; types inferred from zod schemas\n\u25a1 Design tokens used (no raw Tailwind palette); rounded-[4px]\n\u25a1 Docs updated \u2014 README, DEVELOPER-GUIDE, .env.example, JSDoc\n```", "creation_timestamp": "2026-05-19T02:12:59.000000Z"}]}