Description
Next.js 7.0.0 and 7.0.1 has XSS via the 404 or 500 /_error page.
Remediation
References
https://github.com/zeit/next.js/releases/tag/7.0.2
Related Vulnerabilities
CVE-2022-45380 Vulnerability in maven package org.jenkins-ci.plugins:junit
CVE-2023-34454 Vulnerability in maven package org.xerial.snappy:snappy-java
CVE-2019-17640 Vulnerability in maven package io.vertx:vertx-core
CVE-2022-47551 Vulnerability in maven package io.apiman:apiman-manager-api-beans
CVE-2022-29567 Vulnerability in maven package com.vaadin:vaadin-grid-flow