This is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is.
Post
Gergely Orosz
gergely.pragmaticengineer.com
did:plc:3n5xhy6vl7smssmwxq5wgqa6
Here is a recent vulnerability disclosed for Next.js:
For sites using the Next.js middleware for auth, an attacker could bypass the Next.js middleware to get to any page, skipping auth checks here:
BUT.
If the site has more auth checks later, it wouldn’t necessarily load
https://zhero-web-sec.github.io/research-and-things/nextjs-and-the-corrupt-middleware
2025-03-23T07:57:49.247Z