A security vulnerability in Next.js was responsibly disclosed , which allows malicious actors to bypass authorization in Middleware when targeting the x-middleware-subrequest header. Vercel customers are not affected .…
Anonymous readers can preview up to 1024 characters here. Log in to unlock the full article once ingest succeeds.