Software Detail

Software Informaton Top

->

->

Software Detail

Next.js

Number Of NVD

21

CRITICAL

0

HIGH

11

MEDIUM

9

LOW

1

URL	https://nextjs.org/
Explanation	Next.js provides the best development environment with all the features you need for production, including hybrid static and server rendering, TypeScript support, smart bundles, route prefetching, and more. No configuration is required. Translated and excerpted from [https://nextjs.org/]
Tag	MIT License Javascript

Add Information URL

No	Type	Name	URL
1			https://github.com/vercel/next.js/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
21	Next.js 14	14.3.0-canary.14	April 21, 2024	Oct. 26, 2023				0	3	4	1
22	Next.js 13	13.5.11	March 27, 2025	Oct. 27, 2022				0	4	4	1
23	Next.js 12	12.3.1	Sept. 20, 2022	Oct. 27, 2021				0	6	3	0
24	Next.js 11	11.1.0	Aug. 12, 2021	June 23, 2021				0	4	3	0
25	Next.js 10	10.0.7	Feb. 19, 2021	Oct. 28, 2020				0	3	3	0
26	Next.js 9	9.5.5	Oct. 10, 2020					0	1	1	0
27	Next.js 8	8.0.5						0	1	0	0
28	Next.js 7	7.0.3						0	1	0	0
29	Next.js 6	6.0.4						0	1	0	0
30	Next.js 5	5.0.1						0	1	0	0
31	Next.js 4	4.0.5						0	1	0	0
32	Next.js 3	3.0.6						0	1	0	0
33	Next.js 2	2.0.1						0	1	0	0
34	Next.js 1	1.0.2						0	1	1	0

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	or higher	or less	more than	less than	Update date Published date	Show Affected	Exploit PoC Search
21	6.1 5.8	MEDIUM Network	Next.js versions >=9.5.0 and <9.5.4 are vulnerable to an Open Redirect. Specially encoded paths could be used with the trailing slash redirect to allow an open redirect to occur to an external site. …	-	CVE-2020-15242	cpe:2.3:a:vercel:next.js::	9.5.0			9.5.4	2024-11-21 14:05 2020-10-9	Show	GitHub Exploit DB Packet Storm