(Getty Images) Researchers raise alarm about critical Next.js vulnerability The software defect in the widely used open-source JavaScript framework allows attackers to bypass middleware-based authorization. Mar 24, 2025 By Matt Kapko