Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-29927 PoC — Authorization Bypass in Next.js Middleware

Source
https://github.com/sermikr0/nextjs-middleware-auth-bypass
Associated Vulnerability
Title:Authorization Bypass in Next.js Middleware (CVE-2025-29927)
Description:Next.js is a React framework for building full-stack web applications. Starting in version 1.11.4 and prior to versions 12.3.5, 13.5.9, 14.2.25, and 15.2.3, it is possible to bypass authorization checks within a Next.js application, if the authorization check occurs in middleware. If patching to a safe version is infeasible, it is recommend that you prevent external user requests which contain the x-middleware-subrequest header from reaching your Next.js application. This vulnerability is fixed in 12.3.5, 13.5.9, 14.2.25, and 15.2.3.
Description
CVE-2025-29927
Readme
# Next.js App Docker Deploy

Bu loyiha Next.js ilovasini Docker yordamida ishga tushirish uchun
tayyorlangan.

## Build

Docker image yaratish:

``` bash
docker build -t next-app .
```

## Run

Konteynerni ishga tushirish:

``` bash
docker run -d --name next-app --restart always -p 3000:3000 next-app
```

## Access

Brauzer orqali kirish:

    http://<IP>:3000

Masalan:

    http://127.0.0.1:3000

## Qo'shimcha dasturlar

Test va xavfsizlik uchun ishlatiladigan dasturlar:

-   Burp Suite


Telegram => https://t.me/saidakbarxon_s
File Snapshot

 [4.0K]  /data/pocs/9ce392602ddf2bc28516e01c786c4948032a9a7a
├── [4.0K]  app
│   ├── [ 309]  layout.js
│   ├── [4.0K]  login
│   │   └── [2.4K]  page.js
│   └── [2.8K]  page.js
├── [4.0K]  components
│   └── [1.1K]  topbar.js
├── [ 346]  Dockerfile
├── [1.1K]  middleware.js
├── [ 120]  next.config.js
├── [ 464]  package.json
├── [ 535]  README.md
└── [ 18K]  yarn.lock

3 directories, 10 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →