Description
Next.js 7.0.0 and 7.0.1 has XSS via the 404 or 500 /_error page.
Remediation
References
https://github.com/zeit/next.js/releases/tag/7.0.2
Related Vulnerabilities
CVE-2020-13926 Vulnerability in maven package org.apache.kylin:kylin-server
CVE-2022-41228 Vulnerability in maven package io.jenkins.plugins:cavisson-ns-nd-integration
CVE-2020-13942 Vulnerability in maven package org.apache.unomi:unomi-services
CVE-2020-2194 Vulnerability in maven package io.jenkins.plugins:echarts-api
CVE-2024-1597 Vulnerability in maven package org.postgresql:postgresql