{"vulnerability": "CVE-2025-29927", "sightings": [{"uuid": "2fafca68-96ad-4d3a-9ac6-c5e6548f4772", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3llluhcxi542w", "content": "", "creation_timestamp": "2025-03-30T12:40:09.400406Z"}, {"uuid": "cdd55139-7bd3-4100-8597-0870167574b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/spiegel.goark.fedicity.net.ap.brid.gy/post/3lllkq5qcgme2", "content": "", "creation_timestamp": "2025-03-30T15:56:38.849590Z"}, {"uuid": "97c514c1-7a95-4580-ab16-67d2206322fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "5e61a96b-ea67-48f4-aee2-11effef13190", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://cyberplace.social/users/GossiTheDog/statuses/114211661525397352", "content": "", "creation_timestamp": "2025-03-23T12:07:55.853173Z"}, {"uuid": "9ecff79c-c492-4a72-8214-da13e7c22c8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/GossiTheDog.cyberplace.social.ap.brid.gy/post/3ll27fa27fdg2", "content": "", "creation_timestamp": "2025-03-23T12:08:14.006954Z"}, {"uuid": "a062061e-3fde-488d-a729-3b7d1923df65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/rss.y-u-e.workers.dev/post/3ll6vt6tjni24", "content": "", "creation_timestamp": "2025-03-25T09:00:09.529188Z"}, {"uuid": "2fae3534-c696-4876-88d1-59cfefe4f2ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opalsec.io/post/3ll6w6zjtss2r", "content": "", "creation_timestamp": "2025-03-25T09:06:33.458020Z"}, {"uuid": "7953f985-7bba-456f-8857-895e30d5d9ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/technews4869.bsky.social/post/3ll2bgmzl3x2m", "content": "", "creation_timestamp": "2025-03-23T12:44:29.530214Z"}, {"uuid": "e66c3ddf-1fbd-48e2-8c4d-5fd184e6de07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3llp562uepu2u", "content": "", "creation_timestamp": "2025-03-31T19:54:01.687663Z"}, {"uuid": "b9bc073a-7fff-4d72-827b-611664a4119a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/technews4869.bsky.social/post/3ll26c4w6zm2e", "content": "", "creation_timestamp": "2025-03-23T11:48:17.798804Z"}, {"uuid": "dcafe8d2-84b9-4722-92b4-0dc5fd54a8e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uuo5os2o", "content": "", "creation_timestamp": "2025-03-22T16:35:37.653585Z"}, {"uuid": "2176a0df-e230-476b-ad47-663698a32d7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/114212060314893349", "content": "", "creation_timestamp": "2025-03-23T13:48:57.201125Z"}, {"uuid": "47203494-c9f1-4e24-af3e-c5e96a5ad3e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uvjbu22o", "content": "", "creation_timestamp": "2025-03-22T16:35:38.132743Z"}, {"uuid": "e56e1456-179d-40e5-bf79-9a5b7dc01be2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uvjers2o", "content": "", "creation_timestamp": "2025-03-22T16:35:38.639330Z"}, {"uuid": "c35fe380-7f52-468e-b359-31adb82a1967", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uvjfr22o", "content": "", "creation_timestamp": "2025-03-22T16:35:39.160381Z"}, {"uuid": "214ddb6e-22cd-49e1-aaa0-d0633bdade6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/jameshartig.com/post/3ll2g7oxpba2r", "content": "", "creation_timestamp": "2025-03-23T14:10:06.097185Z"}, {"uuid": "2d4f164c-1da9-4588-af15-23d3f72478ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://s.ovalerio.net/users/dethos/statuses/114212303862858147", "content": "", "creation_timestamp": "2025-03-23T14:51:16.424175Z"}, {"uuid": "9ed55f43-db6e-4781-a93b-dbe20a2ebf80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uvjgqc2o", "content": "", "creation_timestamp": "2025-03-22T16:35:39.710807Z"}, {"uuid": "e16aa1e3-74b7-4359-b15d-59847067b480", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eduardoboucas.com/post/3lky5uvyozc2o", "content": "", "creation_timestamp": "2025-03-22T16:35:40.210192Z"}, {"uuid": "801d7038-4a5d-4e5f-a9ce-587755e97baa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "f6fa74f7-b827-4632-958b-431c5c8af38a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/youranonriots.bsky.social/post/3ll5gcogtc22n", "content": "", "creation_timestamp": "2025-03-24T18:49:46.706540Z"}, {"uuid": "88f4342b-164d-49f7-a27d-6742b8ea8619", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/lobsters-feed.bsky.social/post/3ll6wf242lh2o", "content": "", "creation_timestamp": "2025-03-25T09:10:04.887703Z"}, {"uuid": "a5d8ffa9-cc7f-4254-869e-e747b98fcaf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "25fccf3b-f75f-4e39-b96e-e518e8561f7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/lirantal.com/post/3ll2kehtfmc2r", "content": "", "creation_timestamp": "2025-03-23T15:24:32.816797Z"}, {"uuid": "671de7ef-d481-4756-b12d-ca69a6d15afe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/haproxy.bsky.social/post/3ll7bsumtos2r", "content": "", "creation_timestamp": "2025-03-25T12:34:40.858562Z"}, {"uuid": "7bb8f97f-33d5-4e2d-a451-132a77273dd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lkvkd4ny2y2v", "content": "", "creation_timestamp": "2025-03-21T15:40:16.773926Z"}, {"uuid": "d6d4b2e8-b1ec-4479-b28d-9c831439cd50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ll7cae7k322y", "content": "", "creation_timestamp": "2025-03-25T12:42:13.343820Z"}, {"uuid": "41517f4e-9455-4722-8766-1646d50e0b83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/valorin.bsky.social/post/3llaio44oik2k", "content": "", "creation_timestamp": "2025-03-26T00:09:55.346431Z"}, {"uuid": "bcea8fbc-b1a9-4149-bb43-9db82b4c9020", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114201195359591645", "content": "", "creation_timestamp": "2025-03-21T15:45:51.200869Z"}, {"uuid": "ae22c717-c488-418c-9014-3a6c44fd3b98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/newsyc200.bsky.social/post/3ll2ycdcbua2y", "content": "", "creation_timestamp": "2025-03-23T19:33:41.215349Z"}, {"uuid": "7d0c3a9b-2bba-4afe-9497-7361ed780ef0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/upsun.com/post/3llbuwwmct22r", "content": "", "creation_timestamp": "2025-03-26T13:22:18.909310Z"}, {"uuid": "91bbbd94-19af-411d-949b-c6ca63ad1159", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/obivan.infosec.exchange.ap.brid.gy/post/3ll2vicutcbu2", "content": "", "creation_timestamp": "2025-03-23T19:37:29.487290Z"}, {"uuid": "36a9b4dd-8035-4a8e-83ea-01c082c6d16e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3ll4l4nabun2r", "content": "", "creation_timestamp": "2025-03-24T10:43:11.728202Z"}, {"uuid": "451a2ab2-c410-4583-985c-47a77525766c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hdm.io/post/3ll2s7xc57322", "content": "", "creation_timestamp": "2025-03-23T17:44:59.699468Z"}, {"uuid": "2586c61a-e371-43ed-a234-9c9fbd635713", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/slymb.net/post/3ll2smr2ezc2q", "content": "", "creation_timestamp": "2025-03-23T17:52:09.885710Z"}, {"uuid": "16b877c8-b48e-4bf4-8da0-00165784a014", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ll2yoqt5fk2j", "content": "", "creation_timestamp": "2025-03-23T19:40:37.983488Z"}, {"uuid": "61265af5-6f30-49ed-9e3b-d3a17dfebf66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hdm.infosec.exchange.ap.brid.gy/post/3ll2sa3dzy6l2", "content": "", "creation_timestamp": "2025-03-23T18:09:49.107534Z"}, {"uuid": "f9ed2eee-2c72-48a0-923a-1f2d2a6fae71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3ll4kmov24s2h", "content": "", "creation_timestamp": "2025-03-24T10:34:22.331181Z"}, {"uuid": "d4f2d44c-1e8b-49bc-ad9f-df250307f8a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/intruder-io.bsky.social/post/3ll4m65ifzc2t", "content": "", "creation_timestamp": "2025-03-24T11:01:57.721196Z"}, {"uuid": "604535be-f99b-4704-bcd4-a5561b568baf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kyrylo.org/post/3ll7hqwb3ic2t", "content": "", "creation_timestamp": "2025-03-25T14:20:56.451631Z"}, {"uuid": "44f4b807-e013-4d4d-875a-8702b2fbccfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/checkmarxzero.bsky.social/post/3llbwnyy7zo24", "content": "", "creation_timestamp": "2025-03-26T13:53:04.363707Z"}, {"uuid": "d35c8fa7-4ac7-42a9-896f-ad4ac79ee01f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114201443088481629", "content": "", "creation_timestamp": "2025-03-21T16:48:51.656726Z"}, {"uuid": "9e5f7a2a-b29c-4bdf-a34a-9c065a11f109", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/obivan/statuses/114213211788181801", "content": "", "creation_timestamp": "2025-03-23T18:41:47.251403Z"}, {"uuid": "df79ac4b-0a30-43a3-a9a7-80f4f0dbc15f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/betterhn50.e-work.xyz/post/3lkyvcivkaf2v", "content": "", "creation_timestamp": "2025-03-22T23:34:46.690168Z"}, {"uuid": "f7b2c9c8-89cf-4129-9090-eeb30bb1c3dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/mm-hacker-news.bsky.social/post/3lkyvd23bdt2c", "content": "", "creation_timestamp": "2025-03-22T23:35:04.386483Z"}, {"uuid": "32e3ce80-888c-4374-ad35-e1645c61404d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eternalkyu.bsky.social/post/3ll3clsu2xk2x", "content": "", "creation_timestamp": "2025-03-23T22:37:58.311174Z"}, {"uuid": "91eb6aed-1a58-4e29-b8d8-68549d312ceb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hn100.atproto.rocks/post/3lkz23bhbz52a", "content": "", "creation_timestamp": "2025-03-23T01:00:13.091730Z"}, {"uuid": "e46a292f-b757-4356-b421-c82ff81416d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/fourcube/db12eae7c7f519fd6440274cab566d58", "content": "", "creation_timestamp": "2025-03-23T22:37:38.000000Z"}, {"uuid": "3df6a8ae-2662-4afb-96ce-0f5c796d8ab0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "b39b6a8a-86a8-40e4-ba23-c4e1636aea69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llfjevkzzh2u", "content": "", "creation_timestamp": "2025-03-28T00:05:58.319223Z"}, {"uuid": "11583b76-88b9-4217-ad56-f62ac87d2990", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ll2zsjimac2t", "content": "", "creation_timestamp": "2025-03-23T20:00:38.317543Z"}, {"uuid": "5c82b47f-c88a-4f4c-8483-efda18c1b7ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3ll4lx7hx2t2j", "content": "", "creation_timestamp": "2025-03-24T10:58:02.742553Z"}, {"uuid": "7b59aa30-9a66-4c7b-adc9-4881622f39c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/neroqc.bsky.social/post/3ll5mozpo2222", "content": "", "creation_timestamp": "2025-03-24T20:44:06.951918Z"}, {"uuid": "3292db83-0e90-48a6-bf1e-d0ebf51f7100", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3ll6y6ihgxx2l", "content": "", "creation_timestamp": "2025-03-25T09:42:12.694852Z"}, {"uuid": "b5663cd2-650a-495e-aa8a-53d6011188b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hn100.bsky.social/post/3lkyrvzekx727", "content": "", "creation_timestamp": "2025-03-22T22:34:06.545940Z"}, {"uuid": "f100bd49-15e3-4800-b267-537b5749cbf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/dragonjar/statuses/114217084990047034", "content": "", "creation_timestamp": "2025-03-24T11:06:48.485033Z"}, {"uuid": "007d79f7-eac0-4231-b051-b058fa825015", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://mstdn.ca/users/rfwaveio/statuses/114219415384579994", "content": "", "creation_timestamp": "2025-03-24T20:59:30.961312Z"}, {"uuid": "44c7f99c-5f8c-4736-accb-0c0642139db5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hnws.bsky.social/post/3lkys4ihu7j2u", "content": "", "creation_timestamp": "2025-03-22T22:37:43.421601Z"}, {"uuid": "9ba5579a-6614-4231-bb85-950696009381", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/onyxia.co/post/3ll33wfxoos27", "content": "", "creation_timestamp": "2025-03-23T20:38:36.686477Z"}, {"uuid": "1d43d267-eb8b-4259-a3d4-b1996ed8bfa5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "410bb8c0-80ec-4f46-bf15-baa6f8d20e9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hackernewsbot.bsky.social/post/3lkysaoyden2r", "content": "", "creation_timestamp": "2025-03-22T22:40:05.342065Z"}, {"uuid": "29278717-daf6-424d-ac31-02671bd4feb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "0f3e6d5e-5779-4383-954d-5e2fff6f40e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "629c6ee8-95a0-4f8f-a96d-c60335cb604e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hnews.southla.social/post/3lkysjmcyd22b", "content": "", "creation_timestamp": "2025-03-22T22:45:04.501205Z"}, {"uuid": "c856d015-a35a-4eda-ba12-c8386ee815d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3llan6fn3jk2x", "content": "", "creation_timestamp": "2025-03-26T01:30:37.117491Z"}, {"uuid": "aee7752e-7311-40cd-b0f4-82a0e8bad566", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/skip2networks.bsky.social/post/3ll3b5kx6ih2y", "content": "", "creation_timestamp": "2025-03-23T22:12:05.629388Z"}, {"uuid": "a0ab7ce4-953b-44c1-a762-676cdeb84085", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "d92a4462-9cba-4f0d-9c87-3388f4ee2d32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/betterhn20.e-work.xyz/post/3lkytdhtt7m2o", "content": "", "creation_timestamp": "2025-03-22T22:59:31.720949Z"}, {"uuid": "821382bd-b7a0-4808-966d-11bf2504cfcd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3llddzph5s224", "content": "", "creation_timestamp": "2025-03-27T03:24:56.940302Z"}, {"uuid": "ff6d28e2-8762-41c4-bdd0-28b0e6d1baa8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hackernewstop5.bsky.social/post/3lkytewbo442w", "content": "", "creation_timestamp": "2025-03-22T23:00:20.504001Z"}, {"uuid": "90aa43a0-8e42-44dc-b168-9964c36695fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3ll4px2tob626", "content": "", "creation_timestamp": "2025-03-24T12:09:32.822838Z"}, {"uuid": "fc073764-79df-4fd4-b060-5157a2697af3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llaly4zk3j2l", "content": "", "creation_timestamp": "2025-03-26T01:09:12.582132Z"}, {"uuid": "6cdd0f62-acb1-4f7e-9c6e-a8f2922347b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/msittechnews.bsky.social/post/3llesq7dwln2b", "content": "", "creation_timestamp": "2025-03-27T17:20:42.648015Z"}, {"uuid": "a2055c8a-153e-428f-acbe-905f459bb430", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llas6mqmmb2u", "content": "", "creation_timestamp": "2025-03-26T03:00:12.996072Z"}, {"uuid": "577f099e-0941-49d4-9ec0-c5697b2c759e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hdm.io/post/3lkz7syypit2v", "content": "", "creation_timestamp": "2025-03-23T02:42:58.003052Z"}, {"uuid": "88310d8b-6ce8-4218-baf1-0f1c4acfefc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kgmogane.bsky.social/post/3lkzqpbxbr22o", "content": "", "creation_timestamp": "2025-03-23T07:45:09.674623Z"}, {"uuid": "0e11883a-8d29-4bfb-a494-919c07f85a11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hdm.infosec.exchange.ap.brid.gy/post/3lkz7t3cor572", "content": "", "creation_timestamp": "2025-03-23T02:47:26.394271Z"}, {"uuid": "a56981e2-79b2-4eb7-82f1-9e86dfa85d94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/5h0ckrat3s.bsky.social/post/3ll5syxjio225", "content": "", "creation_timestamp": "2025-03-24T22:36:58.292184Z"}, {"uuid": "2bc20dfd-5a60-48e3-9183-3172b5251428", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pgermishuys.bsky.social/post/3llca6c7lls27", "content": "", "creation_timestamp": "2025-03-26T16:43:14.643657Z"}, {"uuid": "64eda3d3-df37-403c-9c2f-29f3ec9e68ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/technofeed.bsky.social/post/3ll5t7verrx26", "content": "", "creation_timestamp": "2025-03-24T22:40:50.156443Z"}, {"uuid": "00f50c84-f826-4c53-853e-113e905bfa4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/catc0n.bsky.social/post/3ll7pxaqzck2c", "content": "", "creation_timestamp": "2025-03-25T16:47:39.878977Z"}, {"uuid": "43cb1c2a-ad64-4e82-ae5c-65409d0f73cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/netalexx.bsky.social/post/3lkzt7xlkjs2g", "content": "", "creation_timestamp": "2025-03-23T08:30:15.975978Z"}, {"uuid": "ff06d062-a3f6-43a1-962a-a6aad938da07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3ll4t25nbas2r", "content": "", "creation_timestamp": "2025-03-24T13:05:02.140488Z"}, {"uuid": "56e33a72-dcb9-4cb1-932b-fedcceb6bd01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ll4rnw7exc25", "content": "", "creation_timestamp": "2025-03-24T12:40:13.919731Z"}, {"uuid": "257334c4-882c-4397-adb7-0b6be77589aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/azu.bsky.social/post/3lkztqy6c5l2e", "content": "", "creation_timestamp": "2025-03-23T08:39:44.511145Z"}, {"uuid": "af8027ab-0549-4bf3-aea4-b5cfd4e78836", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/azu.bsky.social/post/3lkzu22v5jg2l", "content": "", "creation_timestamp": "2025-03-23T08:44:49.248178Z"}, {"uuid": "27f7578d-3155-4649-9a6b-66c9f2913ead", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3ll4t26kons2r", "content": "", "creation_timestamp": "2025-03-24T13:05:02.648923Z"}, {"uuid": "c147889a-6e31-472e-8078-d4868e256e06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "3ca5f3a0-3070-4cfc-80de-f06553b60567", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/feedbot.unronritaro.net/post/3ll5v36pg5e2b", "content": "", "creation_timestamp": "2025-03-24T23:13:59.955050Z"}, {"uuid": "37a7fa11-07e7-4086-9510-299c3f95a56e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/securestep9.bsky.social/post/3ll5vdc246k23", "content": "", "creation_timestamp": "2025-03-24T23:18:34.081359Z"}, {"uuid": "23af47e7-0a28-4431-8ee3-f946b5a957f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llcgz76gpz25", "content": "", "creation_timestamp": "2025-03-26T18:45:39.068042Z"}, {"uuid": "a15a85fb-55b3-466d-aff9-3db388c7b05c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pradumnasaraf.dev/post/3lldq7yisu22z", "content": "", "creation_timestamp": "2025-03-27T07:03:16.626901Z"}, {"uuid": "72dfaf33-d1fc-40de-abe5-ccf66d98277a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pradumnasaraf.dev/post/3lldqa3z6kk2z", "content": "", "creation_timestamp": "2025-03-27T07:03:17.164642Z"}, {"uuid": "68ea9ea0-e86b-41a4-a9b6-24243d4ed5d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ll3s6ppqh22e", "content": "", "creation_timestamp": "2025-03-24T03:16:58.217632Z"}, {"uuid": "d601791b-a261-4279-be42-571d9d88104b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/stux.mstdn.social.ap.brid.gy/post/3ll4tkhp7xq72", "content": "", "creation_timestamp": "2025-03-24T13:14:15.670896Z"}, {"uuid": "68d1715a-eafe-49d6-a91d-d45139b41c32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/helpnetsecurity.com/post/3ll4tv6tj7k2r", "content": "", "creation_timestamp": "2025-03-24T13:20:08.397130Z"}, {"uuid": "5442e368-9fec-42e8-88b7-679910cae2b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "365b2923-c119-4778-86e1-fe4eb6a10365", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "e4e7c96b-0bce-40d2-90d6-bbea0623999a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/johnhammond.bsky.social/post/3ll4ss3wlhy2k", "content": "", "creation_timestamp": "2025-03-24T13:00:27.890521Z"}, {"uuid": "09d97451-20be-47e3-9d19-31819c73afdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "3e8362fd-77c2-4bd5-9124-ef2bdb5490b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://thehackernews.com/2025/03/critical-nextjs-vulnerability-allows.html", "content": "", "creation_timestamp": "2025-03-24T08:17:00.000000Z"}, {"uuid": "67f4cb4d-a824-42bc-8d16-3df2fc480830", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "4c48169e-a5a4-43aa-a938-462ff9b18498", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/a9v8i/916593b2cb8582a94190ac4982bce804", "content": "", "creation_timestamp": "2025-03-24T14:11:24.000000Z"}, {"uuid": "84db6e9d-9ce2-4e92-a6eb-f0ba68480162", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "3d5840d1-6662-4014-8a30-d7c791694874", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://projectdiscovery.io/blog/nextjs-middleware-authorization-bypass", "content": "", "creation_timestamp": "2025-03-24T14:14:34.468558Z"}, {"uuid": "c9101c00-5d11-492c-b1f1-ada67593987d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/OpenSource.activitypub.awakari.com.ap.brid.gy/post/3ll4uhlgx6f72", "content": "", "creation_timestamp": "2025-03-24T13:30:45.220709Z"}, {"uuid": "9d06b05d-1d60-4ce3-bcec-78f82fb6d993", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/weeklybrew.dev/post/3llb4bxdmxq22", "content": "", "creation_timestamp": "2025-03-26T06:01:02.000212Z"}, {"uuid": "3bdc67bf-d70c-48ff-b82f-47ac8d5bd2ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llcinn35nc2b", "content": "", "creation_timestamp": "2025-03-26T19:14:58.699588Z"}, {"uuid": "bce6dd3c-ceda-4d23-adf6-e09f85380c72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/yacinekharoubi.bsky.social/post/3ll3xuiacpc2k", "content": "", "creation_timestamp": "2025-03-24T04:58:36.642446Z"}, {"uuid": "730b3f5c-1819-4a86-937e-c8f282134ad5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/Android.activitypub.awakari.com.ap.brid.gy/post/3ll42nnrgjeb2", "content": "", "creation_timestamp": "2025-03-24T05:54:53.424571Z"}, {"uuid": "7aadbc64-1037-4bbe-98cd-9b8fe91f8a4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "8830e763-054f-412b-9d9c-2e93f6d55e8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/jflh.bsky.social/post/3ll7usnwhoc2z", "content": "", "creation_timestamp": "2025-03-25T18:14:35.000771Z"}, {"uuid": "a53bdd6b-ec96-4545-9c49-a8e9f2365533", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/yacinekharoubi.bsky.social/post/3ll3y436cbs2k", "content": "", "creation_timestamp": "2025-03-24T05:02:51.772999Z"}, {"uuid": "0aad30c6-b38e-4f98-9ad5-42d4c654c0f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3ll5yfbmaz72x", "content": "", "creation_timestamp": "2025-03-25T00:36:24.810593Z"}, {"uuid": "304f3463-c85a-4a93-9b0d-a73538add1bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://gist.github.com/ricardojba/86eaf1c5da9467c9670aeaf5913f9145", "content": "", "creation_timestamp": "2025-03-25T18:27:01.000000Z"}, {"uuid": "6b980ea4-39e2-4304-8e82-4b0d25119f0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/buzzleaktv.bsky.social/post/3ll53okymab2n", "content": "", "creation_timestamp": "2025-03-24T15:39:33.508300Z"}, {"uuid": "2c068406-f84d-453b-a551-8a90430e5734", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/ishowcybersecurity.bsky.social/post/3ll53wvado22z", "content": "", "creation_timestamp": "2025-03-24T15:44:12.160227Z"}, {"uuid": "e70aef41-cc31-4ca7-a440-5e4a2a8e3dbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/fourcube/45a78b23fb317b0af3d61f0f52314370", "content": "", "creation_timestamp": "2025-03-24T07:55:39.000000Z"}, {"uuid": "a907c56d-77d3-41a4-afe0-1c5e5cc0681e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "c71d9e90-f4bf-4ed8-91fa-fd4dc2a6bc66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/mosesrenegade.bsky.social/post/3ll4bz4gcen2s", "content": "", "creation_timestamp": "2025-03-24T08:00:09.244117Z"}, {"uuid": "077eeaf6-c617-461d-bdf7-394ae6231ed3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/eternalkyu.bsky.social/post/3ll4cmfgyos2x", "content": "", "creation_timestamp": "2025-03-24T08:10:58.469886Z"}, {"uuid": "715985c4-115a-4ac3-be4e-c45482424849", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "c118a454-6f6e-4049-b5e3-525a0e998433", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/modat-io.bsky.social/post/3ll53caxask26", "content": "", "creation_timestamp": "2025-03-24T15:32:44.487741Z"}, {"uuid": "eafa665c-276c-4e02-89eb-b3aca57a8614", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "d5d24125-7085-4807-8a7e-8939a23795ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ll4hgrsrc5o2", "content": "", "creation_timestamp": "2025-03-24T09:38:20.417068Z"}, {"uuid": "e0f85804-e68c-490b-b715-c88048320e79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/mdiqbalahmad/bd656f21569c0df0cd7ee6a6f2ba2ad7", "content": "", "creation_timestamp": "2025-03-25T19:33:01.000000Z"}, {"uuid": "89465776-c035-4258-aca6-ca7c6e0607ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/rajsamani.bsky.social/post/3llb7oe44fc2k", "content": "", "creation_timestamp": "2025-03-26T07:01:41.034422Z"}, {"uuid": "77079ec2-396d-4981-9efc-503ed26eb91c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/Android.activitypub.awakari.com.ap.brid.gy/post/3ll6nyufedh22", "content": "", "creation_timestamp": "2025-03-25T06:43:05.566132Z"}, {"uuid": "fc631790-7dd6-493d-86ed-6a47f249a5ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3ll4fawzng62k", "content": "", "creation_timestamp": "2025-03-24T08:58:13.166406Z"}, {"uuid": "55390dc5-a5bc-4eac-a724-32c77d9d46b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "112e7a36-d5cd-4989-969a-72ed16e65fd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/defendopsdiaries.bsky.social/post/3ll56ajggw72l", "content": "", "creation_timestamp": "2025-03-24T16:25:23.100239Z"}, {"uuid": "f3c3d786-3026-46fb-a22b-6043417ae6d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kdm.pw/post/3ll4gchl4fk2j", "content": "", "creation_timestamp": "2025-03-24T09:17:05.819539Z"}, {"uuid": "6e9fd0cd-20a8-43af-8dd5-9733760518b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/npub1jxl2tnvnv9gycsy64aze295c3a529lx5sfmzlktf5lxuw805g5wqew0z0n.momostr.pink.ap.brid.gy/post/3llbq7dg5q4t2", "content": "", "creation_timestamp": "2025-03-26T11:58:58.858695Z"}, {"uuid": "ce6fb01c-c19e-41d2-a774-d64e4918db07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kdm.pw/post/3ll4gd6uhxk2j", "content": "", "creation_timestamp": "2025-03-24T09:17:26.673179Z"}, {"uuid": "82fa80cf-07e3-4209-9a58-c18b54dc19b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kdm.pw/post/3ll4gdr2muk2j", "content": "", "creation_timestamp": "2025-03-24T09:17:45.782190Z"}, {"uuid": "ecf47fac-84cb-4afe-9a07-1cc1c451447f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3lleweshmqt2c", "content": "", "creation_timestamp": "2025-03-27T18:25:54.634339Z"}, {"uuid": "046780d2-4ae7-426e-a368-99610ee226d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/binayakbartaula.bsky.social/post/3ll5bfxthac2k", "content": "", "creation_timestamp": "2025-03-24T17:22:14.895957Z"}, {"uuid": "f0f86dcf-d2ab-40c8-8227-de75fb45ea7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "12040967-c3cd-47ea-a000-99bc459a0d97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "9c8e3ec2-9c58-4b77-9c5d-f55a118331f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3llbnrei2gn2q", "content": "", "creation_timestamp": "2025-03-26T11:13:53.382759Z"}, {"uuid": "cf43dc6c-b068-4526-8126-e6bcb87ae8b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "eab62c30-d24e-4175-ba5f-d23d248ae638", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/infernovm.bsky.social/post/3lla3bwmyb52q", "content": "", "creation_timestamp": "2025-03-25T20:10:27.840593Z"}, {"uuid": "3a91e81b-1b89-4340-a02e-fc4d5524dbda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3llerfqeqsc2x", "content": "", "creation_timestamp": "2025-03-27T16:56:56.935140Z"}, {"uuid": "6828b66a-caa5-4357-9ccd-7875d2598f00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3ll6rhwwart26", "content": "", "creation_timestamp": "2025-03-25T07:42:12.252815Z"}, {"uuid": "656df8ad-d2a7-475f-bd7b-4284e9e35b6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/emadshanab/e12542deb6e3eccf76b4a5735f1bb487", "content": "", "creation_timestamp": "2025-03-26T08:57:03.000000Z"}, {"uuid": "db6974ed-36c2-4c1e-8796-0938c55c4487", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3ll57wmnhre2w", "content": "", "creation_timestamp": "2025-03-24T16:55:38.516338Z"}, {"uuid": "8c304558-03b7-4af0-9a32-8ecddd5d7659", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-29927.yaml", "content": "", "creation_timestamp": "2025-03-23T19:02:22.000000Z"}, {"uuid": "3966d01c-9af7-46bc-888b-42232df2149c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://threatintel.cc/2025/03/24/critical-nextjs-vulnerability-allows-attackers.html", "content": "", "creation_timestamp": "2025-03-24T10:35:09.000000Z"}, {"uuid": "f9f4df47-57be-45ae-a3d5-cee646616dbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/evilmaid.bsky.social/post/3ll5asc7vwy2i", "content": "", "creation_timestamp": "2025-03-24T17:11:07.589586Z"}, {"uuid": "7805ce34-8a44-4806-a320-d316337096a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/technews4869.bsky.social/post/3ll22adi7xb2x", "content": "", "creation_timestamp": "2025-03-23T10:35:42.522238Z"}, {"uuid": "00aa3297-ccea-4010-be11-243524f02056", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3ll5dwvgbqx27", "content": "", "creation_timestamp": "2025-03-24T18:07:21.868601Z"}, {"uuid": "514b63f1-27bb-4e00-b749-37580945f4fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3lls54n2twl2u", "content": "", "creation_timestamp": "2025-04-02T00:31:12.871161Z"}, {"uuid": "5098743d-34a5-43c5-bc24-5bfc2724cf6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3ll736e7qkc2x", "content": "", "creation_timestamp": "2025-03-25T10:35:48.941714Z"}, {"uuid": "2878f1f4-8dc2-4d4a-8940-1259a44b9ba6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/tech-trending.bsky.social/post/3ll25kgjlwm2w", "content": "", "creation_timestamp": "2025-03-23T11:35:02.161365Z"}, {"uuid": "7dad5586-7d63-4388-b647-9e8bdcb8a0c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/netcodex.bsky.social/post/3llh2cvruy22f", "content": "", "creation_timestamp": "2025-03-28T14:41:49.240225Z"}, {"uuid": "da34c31a-b274-4349-946a-72a72dd6e5c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3llcpycosd22m", "content": "", "creation_timestamp": "2025-03-26T21:26:21.770823Z"}, {"uuid": "e3b342c1-59a3-42cf-9683-36024e1fb322", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3llgh4qtp2i2e", "content": "", "creation_timestamp": "2025-03-28T08:58:18.130277Z"}, {"uuid": "acd0f991-dd27-457a-96b0-ff82280329fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3llgilpl73f2g", "content": "", "creation_timestamp": "2025-03-28T09:24:32.961499Z"}, {"uuid": "7bef78d8-977f-46d7-a233-e13311dc4ce3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3llh4n4m4fs2x", "content": "", "creation_timestamp": "2025-03-28T15:23:15.375836Z"}, {"uuid": "76c98fda-b7ad-43a6-a862-54f6ab00f655", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3llsfpbyjo22x", "content": "", "creation_timestamp": "2025-04-02T03:04:48.879346Z"}, {"uuid": "2c6ab21a-dd56-4186-b111-9dbc43be870f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/buzzleaktv.bsky.social/post/3llh6f246qg2v", "content": "", "creation_timestamp": "2025-03-28T15:54:32.163564Z"}, {"uuid": "972d5aca-61e6-4ee0-b558-e6cb6966a68a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberresearch.bsky.social/post/3llhfzk6jxq2e", "content": "", "creation_timestamp": "2025-03-28T18:11:16.462851Z"}, {"uuid": "141a8f8f-2171-4718-9afa-dd8ca89d903a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llhlrxf7jw25", "content": "", "creation_timestamp": "2025-03-28T19:54:23.571565Z"}, {"uuid": "5ade83cf-e999-47a2-9f01-0722d52bc750", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llhnjzkyiy2b", "content": "", "creation_timestamp": "2025-03-28T20:25:44.846486Z"}, {"uuid": "ef2a08a6-ab15-4cc5-bf82-2b492c6fa1be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/kushelmex.com/post/3llhr3km4sk2r", "content": "", "creation_timestamp": "2025-03-28T21:29:19.087285Z"}, {"uuid": "bb3c2eda-3fab-4fc1-945d-0d4ee9676306", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3llk7zvsn472f", "content": "", "creation_timestamp": "2025-03-29T21:02:08.634687Z"}, {"uuid": "d626fc60-c011-4152-b43c-3635578818b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/njccic.bsky.social/post/3llrdodww722a", "content": "", "creation_timestamp": "2025-04-01T16:55:53.347443Z"}, {"uuid": "f1d4b9b7-c303-4ebd-a0fe-f6e8781e352b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3ll726rgzcc2g", "content": "", "creation_timestamp": "2025-03-25T10:18:09.471337Z"}, {"uuid": "73ec5a90-6cdc-4718-9fa3-3643e84b593d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.bsky.social/post/3ll73443q422v", "content": "", "creation_timestamp": "2025-03-25T10:34:36.235555Z"}, {"uuid": "5a71dd2b-e121-4192-ab66-e77bd932241b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/tech-trending.bsky.social/post/3lll4rgcq7u2a", "content": "", "creation_timestamp": "2025-03-30T05:36:19.862393Z"}, {"uuid": "7101247e-0d4d-4034-b4d5-dcecfd9f0876", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lltbyb224k2x", "content": "", "creation_timestamp": "2025-04-02T11:30:54.894597Z"}, {"uuid": "28d3f52f-a4d7-4a2a-8c63-da2bfda30245", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/ai-news.at.thenote.app/post/3lltcez2ax22x", "content": "", "creation_timestamp": "2025-04-02T11:38:02.365640Z"}, {"uuid": "753fe3d0-b40a-4337-b181-aca22f115c54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/ai-ru.at.thenote.app/post/3llxl76hwbk2x", "content": "", "creation_timestamp": "2025-04-04T04:26:29.559252Z"}, {"uuid": "28ee2ee4-aa17-4a7e-9a3d-8115360a52c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114270672120502866", "content": "", "creation_timestamp": "2025-04-02T22:14:42.800797Z"}, {"uuid": "0f56ff2f-d7b1-4414-abe1-83c0263a2cfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114270672120502866", "content": "", "creation_timestamp": "2025-04-02T22:14:42.798515Z"}, {"uuid": "0d611279-ab9b-481b-a1c7-582ef1db5271", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lluikvzlgw2h", "content": "", "creation_timestamp": "2025-04-02T23:01:31.778691Z"}, {"uuid": "fb74372f-3625-402d-a837-f329a05e1e11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/azureweekly.endj.in/post/3llw3mwtstf24", "content": "", "creation_timestamp": "2025-04-03T14:15:11.841460Z"}, {"uuid": "4dff4c63-9e9f-4437-a81d-7038369348c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3lmb7ilpyaa2a", "content": "", "creation_timestamp": "2025-04-08T00:23:37.889644Z"}, {"uuid": "65c94601-fdf8-48a1-b6c8-af2e19240e35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lm5qmwxidpf2", "content": "", "creation_timestamp": "2025-04-06T15:20:26.957424Z"}, {"uuid": "6322e6fb-8f30-4f11-8223-adf38daa747a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3lm34542gqe2e", "content": "", "creation_timestamp": "2025-04-05T14:07:32.955202Z"}, {"uuid": "e487d5dc-35d9-4e8e-931a-ccc0b2a96180", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/youranonriots.bsky.social/post/3lmdvd5sq622c", "content": "", "creation_timestamp": "2025-04-09T01:59:40.634228Z"}, {"uuid": "a8aefb55-b2a3-4a04-88ca-b0e85c9e9ea4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3lmcqemguqp2z", "content": "", "creation_timestamp": "2025-04-08T14:58:17.700166Z"}, {"uuid": "905cb51e-4f89-40de-b54e-edea17a302eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "exploited", "source": "https://gist.github.com/drfuzzyness/483a6222131a72c3cb36595658f8c610", "content": "", "creation_timestamp": "2025-04-05T18:05:21.000000Z"}, {"uuid": "3f8b4764-9d68-461b-86be-152682bdd108", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/bdeshi/310c9b077579c06bd20542bd96cba78c", "content": "", "creation_timestamp": "2025-04-15T19:56:15.000000Z"}, {"uuid": "d59a3206-5825-4f7b-bdf2-bd84b59509dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ln2wfozcequ2", "content": "", "creation_timestamp": "2025-04-18T05:51:38.583685Z"}, {"uuid": "84b442aa-f305-41ce-b357-8796a898fb4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/securitycipher.bsky.social/post/3lmqvua3lat2x", "content": "", "creation_timestamp": "2025-04-14T06:13:47.622637Z"}, {"uuid": "dfc43d6b-37ff-4173-b235-967b49205346", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "confirmed", "source": "https://gist.github.com/rudSarkar/0a7502eec392872351882898903bff6b", "content": "", "creation_timestamp": "2025-03-27T10:43:26.000000Z"}, {"uuid": "405b92de-fdf3-47be-8080-d3b57d684737", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lqisoqoqcu25", "content": "", "creation_timestamp": "2025-05-31T22:36:30.130214Z"}, {"uuid": "ccd71cf1-534e-40a5-bddb-f24233ccd5db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/securitycipher.bsky.social/post/3lne6i3omyt2e", "content": "", "creation_timestamp": "2025-04-21T22:08:37.991613Z"}, {"uuid": "65a80791-555f-4240-9876-2be7047b1d78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/and0x00/38fd282e67b521a4c2f35ead11c91fa7", "content": "", "creation_timestamp": "2025-07-07T00:49:33.000000Z"}, {"uuid": "1e317254-9e26-4448-ae7f-01a1e2c3f70f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/finnjohn3344.bsky.social/post/3lnn3n5m3vs2c", "content": "", "creation_timestamp": "2025-04-25T11:11:52.345588Z"}, {"uuid": "13440a33-e8e6-4082-a71d-445fa6da3943", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/u2k25.bsky.social/post/3lofijyr3pc2l", "content": "", "creation_timestamp": "2025-05-05T04:06:32.400825Z"}, {"uuid": "0724d80c-a085-4d07-af35-d422ddf5cd24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/wardenshield.bsky.social/post/3lp3nrt3fl22f", "content": "", "creation_timestamp": "2025-05-13T23:39:02.899940Z"}, {"uuid": "11ef92fb-b850-464e-a0c9-14714beffc64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/ytroncal.bsky.social/post/3lrpjdr4o6k2z", "content": "", "creation_timestamp": "2025-06-16T08:03:09.344705Z"}, {"uuid": "c24cbb50-29ea-439b-b4cb-2020f8f19132", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/bilaltariq01.bsky.social/post/3lr7zjs6jxj2e", "content": "", "creation_timestamp": "2025-06-10T04:10:15.033243Z"}, {"uuid": "67c51ddc-e909-49a2-a9a2-39f46acbe029", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/ytroncal.bsky.social/post/3lradjzru6c2q", "content": "", "creation_timestamp": "2025-06-10T07:09:22.845434Z"}, {"uuid": "4bb6a8fc-02aa-4bbc-8556-922340639558", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/wardenshield.bsky.social/post/3lvc7krx2sk26", "content": "", "creation_timestamp": "2025-07-31T22:44:24.322908Z"}, {"uuid": "8d15eb5c-45e1-4cbc-8a93-3a3f89d2c576", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3lpoyrtsu532u", "content": "", "creation_timestamp": "2025-05-21T16:16:23.259086Z"}, {"uuid": "8e127422-ed0c-4d8c-b4a7-6397870203de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/crowdsec.bsky.social/post/3lvl4u4wl4k22", "content": "", "creation_timestamp": "2025-08-04T11:49:52.788945Z"}, {"uuid": "b1305eb1-9658-44f1-8de2-5e2b4fa3df24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/lost-rob0t/d0b5e9fa379d7b29d0fc05a3a3c8601d", "content": "", "creation_timestamp": "2025-08-27T22:27:38.000000Z"}, {"uuid": "049a2597-0692-49b4-92e0-6b6b2f15ce4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/hackinghub.bsky.social/post/3m4vd5ol6xm2c", "content": "", "creation_timestamp": "2025-11-05T15:05:28.051522Z"}, {"uuid": "d2a403be-6cd8-44d8-b571-3297b4985236", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/Darkcrai86/177a0e2159bfad206d01023dab5d1dea", "content": "", "creation_timestamp": "2025-09-19T08:34:28.000000Z"}, {"uuid": "34b4cdfa-ea5c-4ba7-982c-c1f2fc354e04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/darkwebinformer.com/post/3lz2ancfbt224", "content": "", "creation_timestamp": "2025-09-17T16:23:00.385900Z"}, {"uuid": "52d43bf2-2927-46d3-a376-04295fee347c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3lwwbx6hqd527", "content": "", "creation_timestamp": "2025-08-21T15:45:25.382746Z"}, {"uuid": "0857a048-a732-459a-81ac-55bff6760979", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/securitycipher.bsky.social/post/3lyxwcnyrsa2k", "content": "", "creation_timestamp": "2025-09-16T18:12:48.498005Z"}, {"uuid": "a103e4d4-dde9-41bd-9fb9-b6acbd76fffa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lxrpuip7h22o", "content": "", "creation_timestamp": "2025-09-01T13:36:26.020028Z"}, {"uuid": "b0d55a9b-fc8e-477a-ba9d-48e711c56dfb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3lxs2khfnmk2k", "content": "", "creation_timestamp": "2025-09-01T16:47:39.937252Z"}, {"uuid": "652b6648-1ab0-4826-9a4d-052abb120cef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/packetstorm.bsky.social/post/3lxs4rncn4m2h", "content": "", "creation_timestamp": "2025-09-01T17:27:23.597925Z"}, {"uuid": "ccc9907f-c758-44a4-82da-50403836aa8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/u2k25.bsky.social/post/3lxuklswa722j", "content": "", "creation_timestamp": "2025-09-02T16:40:00.879251Z"}, {"uuid": "e0056e3f-e219-4ab0-b7f5-f2f94058c5c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3m5ho5lnjzh2r", "content": "", "creation_timestamp": "2025-11-12T22:10:10.670828Z"}, {"uuid": "a170af3f-98f9-4dc3-9fff-ed705c167970", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mfkf3b3a3c2x", "content": "", "creation_timestamp": "2026-02-23T19:27:21.114200Z"}, {"uuid": "2b802c21-dac3-427e-b16c-7fe5bd6ce218", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3ly25y33zni2j", "content": "", "creation_timestamp": "2025-09-04T22:10:11.058809Z"}, {"uuid": "0b7b08bf-9a64-4dcb-b79a-65a286f4ae73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ly2bceeudo72", "content": "", "creation_timestamp": "2025-09-04T23:09:42.293496Z"}, {"uuid": "db71a9c1-1a2c-41d4-a163-9c53b54515da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "e92402ac-b04a-4e73-ad0b-3c8344ca18bd", "vulnerability": "CVE-2025-29927", "type": "exploited", "source": "https://beelzebub.ai/blog/threat-huntinga-analysis-of-a-nextjs-exploit-campaign/", "content": "", "creation_timestamp": "2025-12-15T14:05:41.822870Z"}, {"uuid": "df9e8320-dc4b-4d0f-a2a4-3a277e774715", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "e92402ac-b04a-4e73-ad0b-3c8344ca18bd", "vulnerability": "CVE-2025-29927", "type": "exploited", "source": "https://securitylabs.datadoghq.com/articles/nextjs-middleware-auth-bypass", "content": "", "creation_timestamp": "2025-12-15T14:29:13.422878Z"}, {"uuid": "7c57011f-6bbf-4bf5-95b1-0a21da519662", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pvynckier.bsky.social/post/3mblh2fngsk2z", "content": "", "creation_timestamp": "2026-01-04T07:54:37.038026Z"}, {"uuid": "d74f56fb-fd8c-47fb-8249-1ec87a3f33e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3marfvlm6uc26", "content": "", "creation_timestamp": "2025-12-24T23:24:48.393558Z"}, {"uuid": "310d39dc-5231-455a-b26d-6432d8674f1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3majwhzntdz2y", "content": "", "creation_timestamp": "2025-12-22T00:00:05.274917Z"}, {"uuid": "03065abd-1f73-48f8-9af0-b6b8c158c1f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-e40d4570-989b88cdb94f7d04", "content": "", "creation_timestamp": "2025-12-24T13:07:58.944767Z"}, {"uuid": "d82a77b6-c110-4e91-97b3-c9b50b97e757", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/offensiverescuerangers/29", "content": "Intigriti \u043a\u0430\u0436\u0434\u044b\u0439 \u043c\u0435\u0441\u044f\u0446 \u043f\u043e\u0441\u0442\u044f\u0442 CTF \u0442\u0430\u0441\u043a\u0438, \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044f\u044f \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043f\u043e \u0441\u0441\u044b\u043b\u043a\u0435\n\nhttps://bugology.intigriti.io/intigriti-monthly-challenges/0525 - \u0440\u0430\u0439\u0442\u0430\u043f\u044b \u043d\u0430 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0438\u0435 \u0442\u0430\u0441\u043a\u0438.\n\n\u041d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u0432 \"hackdonalds\" \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u043d\u0435\u0434\u0430\u0432\u043d\u044f\u044f (\u043e\u0442\u043d\u043e\u0441\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0434\u0430\u0442\u044b \u0437\u0430\u043f\u0443\u0441\u043a\u0430 \u0437\u0430\u0434\u0430\u0447\u0438) \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2025-29927 \u0441 \u0431\u0430\u0439\u043f\u0430\u0441\u043e\u043c \u043c\u0438\u0434\u043b\u0432\u0430\u0440\u0438 \u0432 Next. \u041f\u043e\u044d\u0442\u043e\u043c\u0443 \u0442\u0430\u0441\u043a\u0438 \u0432\u043f\u043e\u043b\u043d\u0435 \u0430\u043a\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0435 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c\n\n#CTF", "creation_timestamp": "2025-06-19T09:39:14.000000Z"}, {"uuid": "fdb4e0b8-5b71-485e-95f2-cc2241b77fc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/0xdf.bsky.social/post/3mc3bn6ehd32y", "content": "", "creation_timestamp": "2026-01-10T15:00:16.865367Z"}, {"uuid": "351e1baa-7c07-4015-b4b9-03399b96d0d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mc4i2q7v3x24", "content": "", "creation_timestamp": "2026-01-11T02:27:54.237857Z"}, {"uuid": "b04e622f-dfdb-4b8c-8b06-ba6fc4664740", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://gist.github.com/alon710/269acc1fe598702f002e03ddebce0469", "content": "", "creation_timestamp": "2026-01-24T21:25:47.000000Z"}, {"uuid": "3ab1e708-3f02-46ac-a9cb-6ec565d47994", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/Master_X_Cha/6169", "content": "-\n\u0641\u064a\u0647 \u0628\u0627\u062d\u062b\u064a\u0646 \u0623\u0645\u0646\u064a\u064a\u0646 (\u0631\u0634\u064a\u062f \u0648\u064a\u0627\u0633\u0631 \u0639\u0644\u0627\u0645) \u0627\u0643\u062a\u0634\u0641\u0648\u0627 \u062b\u063a\u0631\u0629 \u062e\u0637\u064a\u0631\u0629 \u0641\u064a \u0627\u0644\u0640 Middleware \u0628\u062a\u0627\u0639 Next.js \u2014 \u0648\u0627\u0644\u0644\u064a \u0647\u0648 \u0627\u0644\u0643\u0648\u062f \u0627\u0644\u0644\u064a \u0628\u064a\u062a\u0646\u0641\u0630 \u0642\u0628\u0644 \u0645\u0627 \u0627\u0644\u0637\u0644\u0628 \u064a\u0648\u0635\u0644 \u0644\u0644\u0640 API \u0623\u0648 \u0627\u0644\u0635\u0641\u062d\u0629\u060c \u0648\u0628\u064a\u0633\u062a\u062e\u062f\u0645\u0648\u0647 \u0645\u062b\u0644\u064b\u0627 \u0641\u064a \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0627\u0644\u0635\u0644\u0627\u062d\u064a\u0627\u062a.\n\n \u0627\u0644\u062b\u063a\u0631\u0629 \u0643\u0627\u0646\u062a \u0628\u0628\u0633\u0627\u0637\u0629 \u0625\u0646\u0643 \u0644\u0648 \u0636\u0641\u062a \u0647\u064a\u062f\u0631 \u0645\u0639\u064a\u0646 \u0641\u064a \u0627\u0644\u0637\u0644\u0628 (x-middleware-subrequest) \u0648\u0643\u062a\u0628\u062a \u0641\u064a\u0647 \u0627\u0633\u0645 \u0627\u0644\u0640 Middleware... \u0627\u0644\u0643\u0648\u062f \u0628\u064a\u062a\u062c\u0647\u0644 \u0627\u0644\u0637\u0644\u0628 \u062a\u0645\u0627\u0645\u064b\u0627 \u0648\u0628\u064a\u0639\u062f\u064a\u0647 \u0643\u0623\u0646 \u0645\u0641\u064a\u0634 \u0623\u064a \u062a\u062d\u0642\u0642 \u0623\u0635\u0644\u0627\u064b!\n\u064a\u0639\u0646\u064a \u062a\u0642\u062f\u0631 \u062a\u0639\u062f\u064a \u0639\u0644\u0649 \u0627\u0644\u0640 Auth\u060c \u062a\u0648\u0635\u0644 \u0644\u0635\u0641\u062d\u0627\u062a \u0645\u062d\u0645\u064a\u0629\u060c \u0623\u0648 \u062d\u062a\u0649 \u062a\u0639\u0645\u0644 XSS \u0623\u0648 \u062a\u062e\u0631\u0628 \u0627\u0644\u0643\u0627\u0634 \u0628\u062a\u0627\u0639 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0648  \u0627\u0644\u062e\u0637\u064a\u0631 \u0625\u0646 \u0643\u0644 \u062f\u0647 \u0628\u064a\u062d\u0635\u0644 \u0645\u0646 \u063a\u064a\u0631 \u0645\u0627 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u064a\u062d\u0633 \u0628\u0623\u064a \u062d\u0627\u062c\u0629 \u063a\u0644\u0637.\n\n\u0627\u0644\u062b\u063a\u0631\u0629 \u062f\u064a \u0627\u062a\u0633\u062c\u0644\u062a \u0628\u0640 CVE-2025-29927\n\u0648\u0646\u0635\u064a\u062d\u0629 \u0644\u0623\u064a \u062d\u062f \u0634\u063a\u0627\u0644 \u0628\u0640 Next.js \u062d\u062f\u0651\u062b \u0644\u0644\u0646\u0633\u062e\u0629 \u0627\u0644\u062c\u062f\u064a\u062f\u0629 \u0641\u0648\u0631\u064b\u0627\u060c \u062e\u0635\u0648\u0635\u064b\u0627 \u0644\u0648 \u0628\u062a\u0633\u062a\u062e\u062f\u0645 Middleware\n\n@y_2i9 \ud83e\ude76", "creation_timestamp": "2025-04-24T05:53:51.000000Z"}, {"uuid": "f276bbb5-31d2-4841-b7dd-fa5f400eecb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mi7owupo642a", "content": "", "creation_timestamp": "2026-03-29T17:40:09.656876Z"}, {"uuid": "09ceabb6-1d35-4dd8-8292-893be78f3416", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://gist.github.com/alon710/f6346201ec0b07a53cc81987f242c93c", "content": "", "creation_timestamp": "2026-01-24T22:41:12.000000Z"}, {"uuid": "83b64234-61ec-4f24-8d7b-4a8169c139bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-29927", "type": "seen", "source": "https://gist.github.com/gmoigneu/e9982122600e5c6f6f995d754ca2529f", "content": "", "creation_timestamp": "2026-04-01T08:58:58.000000Z"}, {"uuid": "f55cdabe-7822-4603-b3aa-584615d2079f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3miubr57hto2u", "content": "", "creation_timestamp": "2026-04-06T22:10:12.997298Z"}, {"uuid": "1bc7f2b9-5e8a-4da3-8f46-eae7fc0ba679", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61363", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC for testing CVE-2025-29927 for Next.js versions 11.x, 12.x <= 12.3.5, 13.x <= 13.5.9, 14.x <=14.2.25, 15.x <= 15.2.3\nURL\uff1ahttps://github.com/liamromanis101/CVE-2025-29927-NextJS\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-02T10:22:27.000000Z"}, {"uuid": "862421b2-f6dd-475c-8823-72b5ba2b6346", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/offensiverescuerangers/11", "content": "\u2194\ufe0f Next.js \u0438 \u043f\u043e\u0432\u0440\u0435\u0436\u0434\u0451\u043d\u043d\u044b\u0439 middleware\n\n\u0420\u0430\u0441\u043a\u0440\u044b\u043b\u0438 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u043d\u043e\u0432\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Next.JS CVE-2025-29927. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 Next.js \u043d\u0430\u0447\u0438\u043d\u0430\u044f \u0441 11.1.4. \u0421\u0443\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u2014 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u0430\u044f \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0430 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0430 x-middleware-subrequest, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u0438\u0433\u043d\u043e\u0440\u0438\u0440\u043e\u0432\u0430\u0442\u044c middleware, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u0438 \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0438\u0441\u044c \u043f\u0443\u0442\u0435\u0439.\n\n\u041a\u0430\u043a \u044d\u0442\u043e \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442\n\nNext.js \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 x-middleware-subrequest \u0434\u043b\u044f \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0445 \u043d\u0443\u0436\u0434: \u043e\u043d \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u0442, \u043a\u0430\u043a\u0438\u0435 middleware \u0443\u0436\u0435 \u0431\u044b\u043b\u0438 \u043f\u0440\u043e\u0439\u0434\u0435\u043d\u044b. \u041e\u0434\u043d\u0430\u043a\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u0441\u0430\u043c \u043f\u043e\u0434\u0441\u0442\u0430\u0432\u0438\u0442\u044c \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435, \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u044e\u0449\u0435\u0435, \u0447\u0442\u043e middleware \u0443\u0436\u0435 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u0430\u043d, \u0438 \u0442\u0435\u043c \u0441\u0430\u043c\u044b\u043c \u043e\u0431\u043e\u0439\u0442\u0438 \u0432\u0441\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438.\nx-middleware-subrequest: middleware:middleware:middleware:middleware:middleware\nx-middleware-subrequest: src/middleware:src/middleware:src/middleware:src/middleware:src/middleware\n\u041f\u0440\u0438\u043c\u0435\u0440 \u0437\u0430\u043f\u0440\u043e\u0441\u0430:\nGET /admin/dashboard HTTP/1.1\nHost: vulnerable.site\nx-middleware-subrequest: middleware:middleware:middleware:middleware:middleware\n\u0420\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442: Middleware \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u0438\u0433\u043d\u043e\u0440\u0438\u0440\u0443\u0435\u0442\u0441\u044f, \u0438 \u0437\u0430\u043f\u0440\u043e\u0441 \u043f\u0440\u043e\u0445\u043e\u0434\u0438\u0442, \u043a\u0430\u043a \u0431\u0443\u0434\u0442\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d.\n\n\u0414\u0440\u0443\u0433\u0438\u0435 \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0438 \u0430\u0442\u0430\u043a\n\n\ud83d\udd39CSP bypass\n\u0415\u0441\u043b\u0438 middleware \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0435\u0442 Content-Security-Policy \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0438 - \u043e\u043d\u0438 \u0431\u0443\u0434\u0443\u0442 \u043f\u0440\u043e\u0438\u0433\u043d\u043e\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u044b.\n\n\ud83d\udd39DoS \u0447\u0435\u0440\u0435\u0437 Cache Poisoning\n\u041d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u0435\u0441\u043b\u0438 \u0441\u0430\u0439\u0442 \u0434\u0435\u043b\u0430\u0435\u0442 rewrite \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435 \u0433\u0435\u043e\u043b\u043e\u043a\u0430\u0446\u0438\u0438, \u043c\u043e\u0436\u043d\u043e \u0437\u0430\u043a\u044d\u0448\u0438\u0440\u043e\u0432\u0430\u0442\u044c \"\u043f\u0443\u0441\u0442\u0443\u044e\" \u0438\u043b\u0438 \u043e\u0448\u0438\u0431\u043e\u0447\u043d\u0443\u044e \u0432\u0435\u0440\u0441\u0438\u044e \u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b, \u043d\u0430\u0440\u0443\u0448\u0438\u0432 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0434\u043b\u044f \u0434\u0440\u0443\u0433\u0438\u0445.\n\n\u041a\u043e\u0433\u043e \u044d\u0442\u043e \u043a\u0430\u0441\u0430\u0435\u0442\u0441\u044f\n\u041f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0435 middleware \u0434\u043b\u044f \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u0438\u043b\u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0447\u0443\u0432\u0441\u0442\u0432\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0445 \u0437\u0430\u0434\u0430\u0447. \u0415\u0441\u043b\u0438 middleware \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f - \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0430\u043b\u043e\u0437\u043d\u0430\u0447\u0438\u043c\u0430 (\u043a\u0440\u043e\u043c\u0435 DoS-\u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0435\u0432).\n\n\ud83d\udcd6 \u041f\u043e\u0434\u0440\u043e\u0431\u043d\u0435\u0435:\nhttps://zhero-web-sec.github.io/research-and-things/nextjs-and-the-corrupt-middleware\n\n#web #bac #cache #dos #csp", "creation_timestamp": "2025-04-01T07:16:32.000000Z"}, {"uuid": "072d57ea-b2b3-402a-937c-6ad70e3a3147", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/33798", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927: Next.js Middleware Bypass Vulnerability\nURL\uff1ahttps://github.com/kh4sh3i/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-23T08:21:53.000000Z"}, {"uuid": "05c71ff7-0080-4c28-9daa-3262ae4598ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/g7PPXzsQx3EvDhE5SPzBeDUjd4Cr-dmtNyjjylDsMmWuZRM", "content": "", "creation_timestamp": "2025-06-09T15:00:10.000000Z"}, {"uuid": "52f27c32-6a5a-4f33-adaa-940e40ae454c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/kBhBdCxvMUfwuHCOj75MWhUZkM6NuyWZ-pwu1UfEDMuxBak", "content": "", "creation_timestamp": "2025-05-27T19:20:53.000000Z"}, {"uuid": "02733f4c-0d8e-4f95-9254-a2ae685cc00e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/-AO2ncBEn2Sf_XctW68FAZrvZBAU7Cs6S6qsyaRZ06gRRxw", "content": "", "creation_timestamp": "2025-06-12T19:00:06.000000Z"}, {"uuid": "0ab51344-643a-48f9-b1e8-53047a66941f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/80HbSFrALuv6ewbfBBhs38UvYFQMjdc8WYdCrQAh3mMRxJc", "content": "", "creation_timestamp": "2025-06-15T23:00:06.000000Z"}, {"uuid": "1512655b-2cb2-4107-b50c-9208bd5f6030", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34614", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis is a CVE-2025-29927 Scanner.\nURL\uff1ahttps://github.com/HoumanPashaei/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-29T08:05:23.000000Z"}, {"uuid": "228e148c-9295-4651-b565-f537ddceb58a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/39634", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\nURL\uff1ahttps://github.com/B1ack4sh/Blackash-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-06-07T19:09:04.000000Z"}, {"uuid": "7d8c8422-b081-42c4-895f-2b59397edf7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/44033", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 PoC | Auth Bypass Exploit | Python Tool using httpx | Middleware Vulnerability | Ethical Hacking Toolkit\nURL\uff1ahttps://github.com/mickhacking/thank-u-next\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-14T18:33:26.000000Z"}, {"uuid": "87de04d3-f71b-43d9-bc02-c041fd5cf192", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/cmsbotinfo/48", "content": "New Updates:\n1. Fixing engine crawler\n2. Update module CVE, included CVE-2025-29927, etc\n3. Added New Module Module Single Page Application (SPA)", "creation_timestamp": "2025-04-09T16:12:42.000000Z"}, {"uuid": "d1417867-0c07-4624-b21e-a1e4ef7f5c26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/BugBountyRu/325", "content": "\ud83d\udd77 \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f CVE-2025-29927 \u0432 Next.js \u043d\u0430 \u043f\u0440\u0430\u043a\u0442\u0438\u043a\u0435\n\n\u041f\u043e\u0447\u0435\u043c\u0443 \u043f\u0440\u0438 \u043f\u043e\u0438\u0441\u043a\u0435 \u0431\u0430\u0433\u043e\u0432 \u0432\u0430\u0436\u043d\u043e \u043d\u0435 \u043f\u043e\u043b\u0430\u0433\u0430\u0442\u044c\u0441\u044f \u0442\u043e\u043b\u044c\u043a\u043e \u043d\u0430 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u044b\u0435 \u0441\u043a\u0430\u043d\u0435\u0440\u044b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0430 \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442\u044c \u0433\u043b\u0443\u0431\u043e\u043a\u0438\u0439 \u0430\u043d\u0430\u043b\u0438\u0437 \u043f\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f?\n\n\u041f\u0443\u0431\u043b\u0438\u0447\u043d\u044b\u0435 \u043f\u0440\u0438\u043c\u0435\u0440\u044b \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 CVE-2025-29927 \u043f\u043e\u043a\u0430\u0437\u0430\u043b\u0438, \u0447\u0442\u043e \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u044b \u0438 \u0448\u0430\u0431\u043b\u043e\u043d\u044b (nuclei \u0438 \u0434\u0440\u0443\u0433\u0438\u0435) \u0431\u044b\u043b\u0438 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0442\u043e\u0447\u043d\u044b\u043c\u0438:\n\n\u2796\u043e\u043d\u0438 \u0443\u043f\u0443\u0441\u043a\u0430\u043b\u0438 \u0440\u0435\u0434\u0438\u0440\u0435\u043a\u0442\u044b;\n\u2796\u043f\u043e\u043b\u0430\u0433\u0430\u043b\u0438\u0441\u044c \u043d\u0430 \u043d\u0435\u0441\u0442\u0430\u0431\u0438\u043b\u044c\u043d\u044b\u0435 \u00ab\u0441\u0438\u0433\u043d\u0430\u043b\u044b\u00bb (x-middleware-*);\n\u2796\u0447\u0430\u0441\u0442\u043e \u0444\u043e\u043b\u0441\u0438\u043b\u0438.\n\n\u2705 \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0438\u0437 Assetnote \u0440\u0430\u0437\u043e\u0431\u0440\u0430\u043b\u0438\u0441\u044c, \u043a\u0430\u043a \u0442\u043e\u0447\u043d\u0435\u0435 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0432\u0430\u0442\u044c \u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441 \u043c\u0435\u043d\u044c\u0448\u0438\u043c \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u043e\u043c \u0444\u043e\u043b\u0441\u043e\u0432 \u0438 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432: \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0439\u0442\u0435 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a x-nextjs-data: 1, \u0447\u0442\u043e\u0431\u044b \u0437\u0430\u0441\u0442\u0430\u0432\u0438\u0442\u044c \u0441\u0435\u0440\u0432\u0435\u0440 \u0432\u0435\u0440\u043d\u0443\u0442\u044c x-nextjs-redirect.\n\n\u041f\u0440\u0438\u043c\u0435\u0440 \u0437\u0430\u043f\u0440\u043e\u0441\u0430:\nGET /foo\nHost: target\nX-Nextjs-Data: 1\n\n\u041e\u0442\u0432\u0435\u0442 \u043c\u043e\u0436\u0435\u0442 \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0442\u044c:\n307 Temporary Redirect\nx-nextjs-redirect: /\n\n\u0414\u043b\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a X-Middleware-Subrequest:\nX-Middleware-Subrequest: src/middleware:nowaf:...:pages/_middleware\n\n\u27a1\ufe0f \u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438:\n\n\u2796Next.js 15.x < 15.2.3,\n\u2796Next.js 14.x < 14.2.2,\n\u2796Next.js 13.x < 13.5.9.\n\nP. S. \u0412\u044b\u044f\u0432\u043b\u0435\u043d\u043d\u0430\u044f \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0432 Next.js \u043f\u043e\u043a\u0430\u0437\u0430\u043b\u0430, \u0447\u0442\u043e \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u044f \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u043e\u0432 \u0432 \u0441\u043b\u043e\u0435 middleware \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u043d\u0435\u043d\u0430\u0434\u0451\u0436\u043d\u043e\u0439, \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u0435\u0441\u043b\u0438 \u043e\u043d\u0430 \u043e\u043f\u0438\u0440\u0430\u0435\u0442\u0441\u044f \u043d\u0430 \u043f\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u0435, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u043c\u043e\u0436\u043d\u043e \u043e\u0431\u043e\u0439\u0442\u0438 \u0447\u0435\u0440\u0435\u0437 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0451\u043d\u043d\u044b\u0435 HTTP-\u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0438.\n\n#\u0442\u0435\u0445\u043d\u0438\u043a\u0438 #CVE", "creation_timestamp": "2025-03-29T12:56:26.000000Z"}, {"uuid": "6581676f-6285-4730-8f7d-31c0e8729463", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/ImGYwi0hkfRav_tFIvYQEJE2P5zoE2vWG2nPNeSrjv4QR_U", "content": "", "creation_timestamp": "2025-08-28T15:00:05.000000Z"}, {"uuid": "d9f302a2-5472-4109-bd78-df7edcdec279", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/55698", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aUna CTF, in formato DSP-compliant, basata sulla CVE-2025-29927 di nextjs.\nURL\uff1ahttps://github.com/NS-Projects-Unina/CTF_CVE_DSP_1\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-16T10:51:36.000000Z"}, {"uuid": "0827f70f-9248-4c84-ac04-b9e27f86bc73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25384", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js CVE-2025-29927 Vulnerability Scanner\nURL\uff1ahttps://github.com/jmbowes/NextSecureScan\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T04:39:26.000000Z"}, {"uuid": "bf62fbeb-c5a6-4578-85f5-52e9ba6a2492", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25275", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js POC for CVE-2025-29927\nURL\uff1ahttps://github.com/aleongx/nextjs-cve-2025-29927-poc\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T00:12:55.000000Z"}, {"uuid": "a9067f8e-3061-4563-b7aa-2684f1bdd754", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25625", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1apython script for evaluate if you are vulnerable or not to next.js CVE-2025-29927\nURL\uff1ahttps://github.com/nocomp/CVE-2025-29927-scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T14:13:49.000000Z"}, {"uuid": "7dd84028-eb15-4bc8-9646-8912857c1069", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/30320", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\nURL\uff1ahttps://github.com/pixilated730/NextJS-Exploit-\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-07T10:57:46.000000Z"}, {"uuid": "d02bd86c-95bb-44d7-b4e6-163e20f18d54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/true_secator/7891", "content": "\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Flare \u0440\u0430\u0441\u043a\u0440\u044b\u0432\u0430\u044e\u0442 \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u0443\u044e \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044e \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0447\u0435\u0440\u0432\u044f \u0438 React2Shell\u00a0(CVE-2025-55182, CVSS: 10.0), \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u0443\u044e \u043d\u0430 \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0435 \u0441\u0440\u0435\u0434\u044b \u0441 \u0446\u0435\u043b\u044c\u044e \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0434\u043b\u044f \u043f\u043e\u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0435\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438.\n\n\u0412\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u0430\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u044c \u043f\u043e\u043f\u0430\u043b\u0430 \u0432 \u043f\u043e\u043b\u0435 \u0437\u0440\u0435\u043d\u0438\u044f \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 25 \u0434\u0435\u043a\u0430\u0431\u0440\u044f 2025 \u0433\u043e\u0434\u0430. Flare \u043f\u0440\u0438\u043f\u0438\u0441\u0430\u043b\u0430 \u0435\u0435 TeamPCP (DeadCatx3, PCPcat, PersyPCP \u0438 ShellForce), \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u0430 \u0441 \u043d\u043e\u044f\u0431\u0440\u044f 2025 \u0433\u043e\u0434\u0430 \u0438 \u0443\u043f\u043e\u043c\u0438\u043d\u0430\u043b\u0430\u0441\u044c \u0432 \u0434\u0435\u043a\u0430\u0431\u0440\u0435 2025 \u0433\u043e\u0434\u0430 \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c Operation PCPcat \u0443 Beelzebub.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u043f\u0435\u0440\u0432\u043e\u0435 \u0443\u043f\u043e\u043c\u0438\u043d\u0430\u043d\u0438\u0435 \u0432 Telegram \u0434\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f 30 \u0438\u044e\u043b\u044f 2025 \u0433\u043e\u0434\u0430. \u0421 \u0442\u0435\u0445 \u043f\u043e\u0440 \u0433\u0440\u0443\u043f\u043f\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u043e \u043f\u0443\u0431\u043b\u0438\u043a\u0443\u0435\u0442 \u0443\u043a\u0440\u0430\u0434\u0435\u043d\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0445 \u0436\u0435\u0440\u0442\u0432 \u0438\u0437 \u041a\u0430\u043d\u0430\u0434\u044b, \u0421\u0435\u0440\u0431\u0438\u0438, \u042e\u0436\u043d\u043e\u0439 \u041a\u043e\u0440\u0435\u0438, \u041e\u0410\u042d \u0438 \u0421\u0428\u0410. \n\n\u041a\u0430\u043a \u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438, \u0446\u0435\u043b\u0438 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u0437\u0430\u043a\u043b\u044e\u0447\u0430\u044e\u0442\u0441\u044f \u0432 \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u0438 \u0440\u0430\u0441\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u043f\u0440\u043e\u043a\u0441\u0438-\u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0438 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0441 \u043f\u043e\u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u043c \u0432\u0437\u043b\u043e\u043c\u043e\u043c \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0434\u043b\u044f \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445, \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f ransomware, \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430 \u0438 \u043c\u0430\u0439\u043d\u0438\u043d\u0433\u0430 \u043a\u0440\u0438\u043f\u0442\u044b.\n\nTeamPCP \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u0443\u0435\u0442 \u043a\u0430\u043a \u043e\u0431\u043b\u0430\u0447\u043d\u0430\u044f \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0430 \u0434\u043b\u044f \u043a\u0438\u0431\u0435\u0440\u043f\u0440\u0435\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u044b\u0435 API Docker, API Kubernetes, \u043f\u0430\u043d\u0435\u043b\u0438 \u043c\u043e\u043d\u0438\u0442\u043e\u0440\u0438\u043d\u0433\u0430 Ray, \u0441\u0435\u0440\u0432\u0435\u0440\u044b Redis \u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0435 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f React/Next.js \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043e\u0441\u043d\u043e\u0432\u043d\u044b\u0445 \u043f\u0443\u0442\u0435\u0439 \u0437\u0430\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 \u0441\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0439 \u043e\u0431\u043b\u0430\u0447\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0441 \u0446\u0435\u043b\u044c\u044e \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430.\n\n\u041a\u0440\u043e\u043c\u0435 \u0442\u043e\u0433\u043e, \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0441\u0430\u043c\u044b\u0445 \u0440\u0430\u0437\u043d\u044b\u0445 \u0446\u0435\u043b\u044f\u0445, \u043e\u0442 \u043c\u0430\u0439\u043d\u0438\u043d\u0433\u0430 \u043a\u0440\u0438\u043f\u0442\u044b \u0438 \u0440\u0430\u0437\u043c\u0435\u0449\u0435\u043d\u0438\u044f \u0434\u0430\u043d\u043d\u044b\u0445 \u0434\u043e \u043f\u0440\u043e\u043a\u0441\u0438-\u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0438 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 C2.\n\nTeamPCP \u043e\u043f\u0438\u0440\u0430\u0435\u0442\u0441\u044f \u043d\u0430 \u043f\u0440\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u0435 \u0432\u0440\u0435\u043c\u0435\u043d\u0435\u043c \u043c\u0435\u0442\u043e\u0434\u044b \u0430\u0442\u0430\u043a, \u0442\u0430\u043a\u0438\u0435 \u043a\u0430\u043a \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u044b, \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0438 \u043e\u0448\u0438\u0431\u043a\u0438 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043e\u043f\u0435\u0440\u0430\u0442\u043e\u0440\u0430\u043c \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0443 \u0434\u043b\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0441 \u00ab\u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0430\u0446\u0438\u0435\u0439 \u0438 \u0438\u043d\u0434\u0443\u0441\u0442\u0440\u0438\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0435\u0439\u00bb \u0432\u0441\u0435\u0433\u043e \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430.\n\n\u041a\u0430\u043a \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442 Flare, \u044d\u0442\u043e, \u0432 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u043f\u0440\u0435\u0432\u0440\u0430\u0449\u0430\u0435\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u0443\u044e \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0443 \u0432 \u00ab\u0441\u0430\u043c\u043e\u0432\u043e\u0441\u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u044f\u0449\u0443\u044e\u0441\u044f \u043a\u0440\u0438\u043c\u0438\u043d\u0430\u043b\u044c\u043d\u0443\u044e \u044d\u043a\u043e\u0441\u0438\u0441\u0442\u0435\u043c\u0443\u00bb.\n\n\u0423\u0441\u043f\u0435\u0448\u043d\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u0435\u0442 \u043f\u0443\u0442\u044c \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u043f\u043e\u043b\u0435\u0437\u043d\u044b\u0445 \u043d\u0430\u0433\u0440\u0443\u0437\u043e\u043a \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0435\u0433\u043e \u044d\u0442\u0430\u043f\u0430 \u0441 \u0432\u043d\u0435\u0448\u043d\u0438\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0441\u043a\u0440\u0438\u043f\u0442\u044b \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435 \u043a\u043e\u043c\u0430\u043d\u0434\u043d\u043e\u0439 \u043e\u0431\u043e\u043b\u043e\u0447\u043a\u0438 \u0438 Python, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0437\u0430\u0442\u0435\u043c \u043f\u043e\u0434\u0431\u0438\u0440\u0430\u044e\u0442 \u0438\u0449\u0443\u0442 \u043d\u043e\u0432\u044b\u0435 \u0446\u0435\u043b\u0438 \u0434\u043b\u044f \u0434\u0430\u043b\u044c\u043d\u0435\u0439\u0448\u0435\u0433\u043e \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u044f.\n\n\u041e\u0434\u043d\u0438\u043c \u0438\u0437 \u043e\u0441\u043d\u043e\u0432\u043d\u044b\u0445 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u043e\u0432 \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f proxy.sh, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0435\u0442 \u0443\u0442\u0438\u043b\u0438\u0442\u044b \u0434\u043b\u044f \u043f\u0440\u043e\u043a\u0441\u0438-\u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432, \u043e\u0434\u043d\u043e\u0440\u0430\u043d\u0433\u043e\u0432\u044b\u0445 \u0441\u0435\u0442\u0435\u0439 (P2P) \u0438 \u0442\u0443\u043d\u043d\u0435\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0435 \u0441\u043a\u0430\u043d\u0435\u0440\u044b \u0434\u043b\u044f \u043f\u043e\u0438\u0441\u043a\u0430 \u0432 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0438 \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432.\n\n\u041f\u0440\u0438\u043c\u0435\u0447\u0430\u0442\u0435\u043b\u044c\u043d\u043e, \u0447\u0442\u043e proxy.sh \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u0442 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e \u0441\u0440\u0435\u0434\u044b \u0432\u043e \u0432\u0440\u0435\u043c\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f. \u041d\u0430 \u0440\u0430\u043d\u043d\u0435\u0439 \u0441\u0442\u0430\u0434\u0438\u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043e\u043d \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0435\u0442, \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u043b\u0438 \u043e\u043d \u0432\u043d\u0443\u0442\u0440\u0438 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0430 Kubernetes.\n\n\u041f\u043e\u0441\u043b\u0435 \u0447\u0435\u0433\u043e \u0441\u043a\u0440\u0438\u043f\u0442 \u043f\u0435\u0440\u0435\u0445\u043e\u0434\u0438\u0442 \u0432 \u043e\u0442\u0434\u0435\u043b\u044c\u043d\u044b\u0439 \u043f\u0443\u0442\u044c \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0438 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0435\u0442 \u0432\u0442\u043e\u0440\u0438\u0447\u043d\u0443\u044e \u043f\u043e\u043b\u0435\u0437\u043d\u0443\u044e \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0443, \u0441\u043f\u0435\u0446\u0438\u0444\u0438\u0447\u043d\u0443\u044e \u0434\u043b\u044f \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0430, \u0447\u0442\u043e \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 TeamPCP \u043e\u0442\u0434\u0435\u043b\u044c\u043d\u044b\u0445 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u0438 \u043c\u0435\u0442\u043e\u0434\u043e\u0432 \u0434\u043b\u044f \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0445 \u0446\u0435\u043b\u0435\u0439 \u0432\u043c\u0435\u0441\u0442\u043e \u0443\u043d\u0438\u0432\u0435\u0440\u0441\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e \u0434\u043b\u044f Linux.\n\n\u0421\u0440\u0435\u0434\u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u043f\u043e\u043b\u0435\u0437\u043d\u044b\u0445 \u043d\u0430\u0433\u0440\u0443\u0437\u043e\u043a: \n- scanner.py (\u0434\u043b\u044f \u043f\u043e\u0438\u0441\u043a\u0430 \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u044b\u0445 API Docker \u0438 \u043f\u0430\u043d\u0435\u043b\u0435\u0439 Ray); \n- kube.py (\u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u0432 \u0441\u0435\u0431\u044f \u0441\u043f\u0435\u0446\u0438\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0434\u043b\u044f Kubernetes \u0444\u0443\u043d\u043a\u0446\u0438\u0438 \u0441\u0431\u043e\u0440\u0430 \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0430, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043e\u043f\u0446\u0438\u0438 \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0438 \u0431\u044d\u043a\u0434\u043e\u0440\u0430); \n- react.py (\u043d\u0430\u0446\u0435\u043b\u0438\u0432\u0430\u043d\u0438\u0435 \u043d\u0430 CVE-2025-29927 \u0434\u043b\u044f \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043b\u0435\u043d\u0438\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u043c\u0430\u043d\u0434);\n- pcpcat.py (\u0434\u043b\u044f \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u0445 API Docker \u0438 \u043f\u0430\u043d\u0435\u043b\u0435\u0439 Ray, \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0430 \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u043e\u043b\u0435\u0437\u043d\u043e\u0439 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0438).\n\nFlare \u0437\u0430\u043c\u0435\u0442\u0438\u043b\u0430, \u0447\u0442\u043e \u0443\u0437\u0435\u043b C2 \u043f\u043e \u0430\u0434\u0440\u0435\u0441\u0443 67.217.57[.]240 \u0442\u0430\u043a\u0436\u0435 \u0441\u0432\u044f\u0437\u0430\u043d \u0441 \u0440\u0430\u0431\u043e\u0442\u043e\u0439\u00a0Sliver, \u043a\u043e\u0442\u043e\u0440\u044b\u0439, \u043a\u0430\u043a \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438 \u0434\u043b\u044f \u043f\u043e\u0441\u0442\u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0446\u0435\u043b\u0435\u0439.\n\n\u0422\u0435\u043b\u0435\u043c\u0435\u0442\u0440\u0438\u044f \u0442\u0430\u043a\u0436\u0435 \u043f\u043e\u043a\u0430\u0437\u044b\u0432\u0430\u044e\u0442, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0432 \u043e\u0441\u043d\u043e\u0432\u043d\u043e\u043c \u0432\u044b\u0431\u0438\u0440\u0430\u044e\u0442 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043c\u0438\u0448\u0435\u043d\u0438 \u0441\u0440\u0435\u0434\u044b Amazon Web Services (AWS) \u0438 Microsoft Azure.\n\n\u0410\u0442\u0430\u043a\u0438 \u043d\u043e\u0441\u044f\u0442 \u043e\u043f\u043f\u043e\u0440\u0442\u0443\u043d\u0438\u0441\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0445\u0430\u0440\u0430\u043a\u0442\u0435\u0440 \u0438, \u0432 \u043f\u0435\u0440\u0432\u0443\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u044b \u043d\u0430 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0443, \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u0438\u0445 \u0446\u0435\u043b\u0430\u043c, \u0430 \u043d\u0435 \u043a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u044b\u043c \u043e\u0442\u0440\u0430\u0441\u043b\u044f\u043c. \n\n\u0412 \u0446\u0435\u043b\u043e\u043c, \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f PCPcat \u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u0443\u0435\u0442 \u043f\u043e\u043b\u043d\u044b\u0439 \u0436\u0438\u0437\u043d\u0435\u043d\u043d\u044b\u0439 \u0446\u0438\u043a\u043b \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438, \u0437\u0430\u043a\u0440\u0435\u043f\u043b\u0435\u043d\u0438\u044f \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435, \u0442\u0443\u043d\u043d\u0435\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f, \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u043c\u043e\u043d\u0435\u0442\u0438\u0437\u0430\u0446\u0438\u0438, \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0430\u043d\u043d\u044b\u0439 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0434\u043b\u044f \u0441\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0439 \u043e\u0431\u043b\u0430\u0447\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b.\n\n\u041e\u0441\u043d\u043e\u0432\u043d\u0430\u044f \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u043a\u043b\u044e\u0447\u0430\u0435\u0442\u0441\u044f \u0432 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0438\u043d\u0442\u0435\u0433\u0440\u0430\u0446\u0438\u0438 \u0438 \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u0438\u0440\u0443\u0435\u043c\u043e\u0441\u0442\u0438, \u0430 \u0433\u0438\u0431\u0440\u0438\u0434\u043d\u0430\u044f \u043c\u043e\u0434\u0435\u043b\u044c \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0433\u0440\u0443\u043f\u043f\u0435 \u043c\u043e\u043d\u0435\u0442\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043a\u0430\u043a \u0432\u044b\u0447\u0438\u0441\u043b\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u044b, \u0442\u0430\u043a \u0438 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e.", "creation_timestamp": "2026-02-09T15:51:07.000000Z"}, {"uuid": "cbd5b231-0d82-4382-bb75-db6880896f53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25593", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\uc5d0 \ub300\ud55c \uc124\uba85 \ubc0f \ub9ac\uc11c\uce58\nURL\uff1ahttps://github.com/KaztoRay/CVE-2025-29927-Research\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-28T03:07:44.000000Z"}, {"uuid": "a257cb0a-5860-4263-80d5-2f5677f5de4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/26660", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js CVE-2025-29927 demonstration\nURL\uff1ahttps://github.com/dante01yoon/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-29T08:50:50.000000Z"}, {"uuid": "a8b783bb-3286-4f09-8b47-836bed9de9d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/26502", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aHere is a simple but effective exploit for CVE-2025-29927.\nURL\uff1ahttps://github.com/w2hcorp/CVE-2025-29927-Exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-29T02:18:01.000000Z"}, {"uuid": "10d10731-20d9-4e41-8f6f-9511608aa40f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/HT3M5qBEKW8k_WPn3-1S0A8sGyWZrHWLLjtXbIlw-iFvVyA", "content": "", "creation_timestamp": "2026-04-04T15:00:08.000000Z"}, {"uuid": "8c80d280-243b-4fdc-a254-2a010eabff37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/EO_oQLYXFZJHpYU3zijqCehoUCKssCsFVC4BHatuitA81Fg", "content": "", "creation_timestamp": "2025-10-08T09:00:05.000000Z"}, {"uuid": "7c75fc0f-81e5-4997-9292-d4b3aad561cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24072", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aSigma Rule for CVE-2025\u201329927 Detection\nURL\uff1ahttps://github.com/elshaheedy/CVE-2025-29927-Sigma-Rule\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T23:17:05.000000Z"}, {"uuid": "7eadf789-bf6d-479d-af19-a4d47b7a8b52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/54582", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aReproduction and fix of the CVE-2025-29927 vulnerability.\nURL\uff1ahttps://github.com/Bongni/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-08T02:06:12.000000Z"}, {"uuid": "2dea71a4-64c9-4187-9f63-5ae05de7a15d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24537", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 Proof of Concept \nURL\uff1ahttps://github.com/ThemeHackers/CVE-2025-29972\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T18:01:52.000000Z"}, {"uuid": "215e2618-a606-465a-b3dc-d4d398a3ba10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8885", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2825\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0 are affected by a vulnerability that may result in unauthenticated access. Remote and unauthenticated HTTP requests to CrushFTP may allow attackers to gain unauthorized access.\n\ud83d\udccf Published: 2025-03-26T15:58:14.218Z\n\ud83d\udccf Modified: 2025-03-26T16:17:26.040Z\n\ud83d\udd17 References:\n1. https://www.crushftp.com/crush11wiki/Wiki.jsp?page=Update\n2. https://www.rapid7.com/blog/post/2025/03/25/etr-notable-vulnerabilities-in-next-js-cve-2025-29927/\n3. https://www.runzero.com/blog/crushftp/", "creation_timestamp": "2025-03-26T16:25:16.000000Z"}, {"uuid": "6c12ffa2-fcd2-46f4-adb7-5262499c415f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10140", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30218\n\ud83d\udd25 CVSS Score: 1.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U)\n\ud83d\udd39 Description: Next.js is a React framework for building full-stack web applications. To mitigate CVE-2025-29927, Next.js validated the x-middleware-subrequest-id which persisted across multiple incoming requests. However, this subrequest ID is sent to all requests, even if the destination is not the same host as the Next.js application. Initiating a fetch request to a third-party within Middleware will send the x-middleware-subrequest-id to that third party. This vulnerability is fixed in 12.3.6, 13.5.10, 14.2.26, and 15.2.4.\n\ud83d\udccf Published: 2025-04-02T21:23:14.660Z\n\ud83d\udccf Modified: 2025-04-02T21:23:14.660Z\n\ud83d\udd17 References:\n1. https://github.com/vercel/next.js/security/advisories/GHSA-223j-4rm8-mrmf\n2. https://vercel.com/changelog/cve-2025-30218-5DREmEH765PoeAsrNNQj3O", "creation_timestamp": "2025-04-02T21:34:07.000000Z"}, {"uuid": "95dac7ae-641d-46ad-a811-ebb28c272e9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/jbT4DyaXAQWEEBg3Kh-8FLm9_wvzpJ1MV36Ko8B3bIBgXlo", "content": "", "creation_timestamp": "2026-01-13T15:00:06.000000Z"}, {"uuid": "a028725c-86a0-4cc2-bc47-a817f4c31213", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/dX7Pwj7PqnF2da8IVWPgq-aFC6NZmOtStQ4m7OfqjtGR_0Q", "content": "", "creation_timestamp": "2025-12-02T15:00:08.000000Z"}, {"uuid": "f4936172-ca87-4303-b6f9-0b08093a7ac3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/eiq80vTfK0uEvpSaVkLstXl9YEDfyEgGUyA39bKhe3J3sOM", "content": "", "creation_timestamp": "2026-04-24T09:00:04.000000Z"}, {"uuid": "ce105aba-8b7e-4b70-b643-136a04214f38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/6XnGIsbV0NWVlKB4IcPwvSJwsA-naOFrgxqM1g1tHbSKHTc", "content": "", "creation_timestamp": "2026-04-26T09:00:04.000000Z"}, {"uuid": "4db2c28a-2e43-450d-b9cc-9b776e43fce4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "Telegram/TYo-tUYtY4yoEXhJVKLpp5w3OfhrOAScdxsUdCHbWOXddqU", "content": "", "creation_timestamp": "2025-10-04T09:00:05.000000Z"}, {"uuid": "a025bddb-8b53-4186-a8b9-34cd0070dc10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/WFP8lP7jDUDSH2fQiJTJZDz8d43cmLTdfk9ZEFHqzrVxFLQ", "content": "", "creation_timestamp": "2025-10-15T21:00:08.000000Z"}, {"uuid": "54152fd8-3d14-4338-be39-3d5bf039715c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23974", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA deliberately Next.js app, vulnerable to CVE-2025-29927, Authorization Bypass \nURL\uff1ahttps://github.com/ricsirigu/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T19:17:00.000000Z"}, {"uuid": "9874327d-d348-46d7-bb84-6d509dc6adbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/28236", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a CVE-2025-29927 Bypass Authorization Next.js \nURL\uff1ahttps://github.com/a9v8i/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-02T05:28:59.000000Z"}, {"uuid": "047c5eb1-257f-4706-8494-2390f5d7a5bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/28857", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA basic proof of concept of the CVE-2025-29927 vulnerability that allows to bypass the middleware scripts.\nURL\uff1ahttps://github.com/Naveen-005/Next.Js-middleware-bypass-vulnerability-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-02T05:21:56.000000Z"}, {"uuid": "e09e455e-cc30-4bf9-b3b6-ec2617eb0949", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/30754", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aResearch on Next.js middleware vulnerability (CVE-2025-29927) allowing authorization bypass and potential exploits.\nURL\uff1ahttps://github.com/l1uk/nextjs-middleware-exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-09T15:09:26.000000Z"}, {"uuid": "e939277e-a995-48fe-a8ce-32b7f41889e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24379", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aScript to test if a web app is vulnerable to CVE-2025-29927\nURL\uff1ahttps://github.com/TheresAFewConors/CVE-2025-29927-Testing\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T11:48:30.000000Z"}, {"uuid": "35e990bc-042f-4400-81de-cd0f7ba778a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24678", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/kOaDT/poc-cve-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-26T00:14:57.000000Z"}, {"uuid": "cbeb0d73-c27d-4bf8-bd5f-e896a7bbb3b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25487", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1ahow to hack 90% of next.js created websites with CVE-2025-29927 vulnerability exploit \nURL\uff1ahttps://github.com/Nekicj/CVE-2025-29927-exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T08:43:53.000000Z"}, {"uuid": "40ba510a-a2ef-4a48-94cc-7b8175fe52ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/26132", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNextSploit is a command-line tool designed to detect and exploit CVE-2025-29927, a security flaw in Next.js\nURL\uff1ahttps://github.com/AnonKryptiQuz/NextSploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-28T11:12:14.000000Z"}, {"uuid": "5a57911d-0337-4293-bfa0-cd06fa9af60c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/26045", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927: Next.js Middleware Exploit\nURL\uff1ahttps://github.com/0x0Luk/0xMiddleware\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-28T07:34:01.000000Z"}, {"uuid": "b4e3ff40-63ad-4b9b-bbba-cc638fb6ed7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/27124", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js Auth Bypass Lab \u2010 CVE-2025-29927\nURL\uff1ahttps://github.com/ayato-shitomi/WebLab_CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-30T03:54:51.000000Z"}, {"uuid": "f6f19834-5f03-4d14-8195-169409626299", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/28609", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js CVE-2025-29927 g\u00fcvenlik a\u00e7\u0131\u011f\u0131 hakk\u0131nda\nURL\uff1ahttps://github.com/BilalGns/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-01T19:14:29.000000Z"}, {"uuid": "563ca360-4853-42bf-8928-d3fc10b1796f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34529", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\nURL\uff1ahttps://github.com/hed1ad/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-28T12:55:58.000000Z"}, {"uuid": "ccc9c36e-e777-41e2-a209-183ffcb5ffad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/38174", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a\ud83d\udd10 Python-based smart scanner for CVE-2025-29927 \u2014 Next.js middleware authentication bypass vulnerability. Detects meta refresh, keyword-based redirects, and more.\nURL\uff1ahttps://github.com/sagsooz/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-05-26T08:49:11.000000Z"}, {"uuid": "d3494490-d3c8-40ee-9130-8f29bde8439d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/30071", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1avulnerable-nextjs-14-CVE-2025-29927\nURL\uff1ahttps://github.com/YEONDG/nextjs-cve-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-06T08:48:32.000000Z"}, {"uuid": "276695b2-ceb1-4953-8f01-9bb2cebb21bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/35966", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1ax-middleware exploit for next.js CVE-2023\u201346298 cache poisoning and CVE-2025-29927 bypass\nURL\uff1ahttps://github.com/EarthAngel666/x-middleware-exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-05-08T01:39:43.000000Z"}, {"uuid": "363237f8-8065-4d02-a1e7-e82366a3c8a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/31180", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js CVE-2025-29927 Hunter\nURL\uff1ahttps://github.com/darklotuskdb/nextjs-CVE-2025-29927-hunter\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-11T20:46:30.000000Z"}, {"uuid": "3646cc5b-22d6-400f-a92e-5de416751b5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/29929", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Balajih4kr/cve-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-05T17:14:59.000000Z"}, {"uuid": "9241f488-b292-4c44-8b40-4bfb5d03e294", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/30519", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 ~ a poc of the next.js middleware authentication bypass\nURL\uff1ahttps://github.com/ValGrace/middleware-auth-bypass\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-08T08:11:22.000000Z"}, {"uuid": "1a3c21e0-cf46-490e-84f6-d200ead066a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/31512", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPOC CVE-2025-29927\nURL\uff1ahttps://github.com/ethanol1310/POC-CVE-2025-29927-\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-13T08:27:18.000000Z"}, {"uuid": "4f1d3d22-0c26-4f57-b7bd-92c3984c4d81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/38556", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1avulnerable-nextjs-14-CVE-2025-29927\nURL\uff1ahttps://github.com/SugiB3o/vulnerable-nextjs-14-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-05-29T16:11:53.000000Z"}, {"uuid": "e2eacd6d-1c34-4426-8170-a8aa727c904d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23109", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA Nuclei template to detect CVE-2025-29927 the Next.js authentication bypass vulnerability\nURL\uff1ahttps://github.com/6mile/nextjs-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-23T08:12:52.000000Z"}, {"uuid": "ce2cfe00-e735-4ea5-9a45-9ea74039b028", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/22716", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aVerify Next.js CVE-2025-29927 on Netlify not vulnerable\nURL\uff1ahttps://github.com/serhalp/test-cve-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-22T16:02:32.000000Z"}, {"uuid": "f3a438a6-f042-4894-9168-012d90233a5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23624", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 Exploit Checker\nURL\uff1ahttps://github.com/RoyCampos/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T05:10:48.000000Z"}, {"uuid": "08e5fe7f-9faf-4cc7-867f-57bcc44b73a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23623", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 lab\nURL\uff1ahttps://github.com/strobes-security/nextjs-vulnerable-app\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T05:06:36.000000Z"}, {"uuid": "e4f32fb7-092c-49e7-894b-045546f85b73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23975", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA deliberately Next.js app, vulnerable to CVE-2025-29927, Authorization Bypass \nURL\uff1ahttps://github.com/0xWhoknows/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T19:21:18.000000Z"}, {"uuid": "82fe938a-7ef1-4ab2-8455-fc017540f794", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25153", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js Acceso no autorizado CVE-2025-29927\nURL\uff1ahttps://github.com/aleongx/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T06:37:18.000000Z"}, {"uuid": "cb2fd220-29a6-4597-a53a-cc65457539a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25459", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aEste script verifica la vulnerabilidad CVE-2025-29927 en servidores Next.js, probando m\u00faltiples cargas en la cabecera x-middleware-subrequest para detectar accesos no autorizados.\nURL\uff1ahttps://github.com/aleongx/CVE-2025-29927_Scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T07:43:04.000000Z"}, {"uuid": "0c345f8a-2290-48da-b348-be4004171a04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/29481", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js Middleware Authorization Bypass Tool (CVE-2025-29927)\nURL\uff1ahttps://github.com/fahimalshihab/NextBypass\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-26T15:28:43.000000Z"}, {"uuid": "a669d6ad-d78c-4187-97e8-d217864a4efe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34522", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\nURL\uff1ahttps://github.com/hed1ad/my-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-28T11:17:40.000000Z"}, {"uuid": "e0cff15f-82ca-4bc0-a552-52dac6aa9fe4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24538", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1ascript to check cve \\\"CVE-2025-29927\\\" while waiting to add it to HExHTTP\nURL\uff1ahttps://github.com/c0dejump/CVE-2025-29927-check\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T18:06:00.000000Z"}, {"uuid": "55867c01-4c3d-4dbb-b862-d785dcc7af58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/42489", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a> \ud83d\udd13 Proof-of-Concept for a fictional Next.js middleware bypass (CVE-2025-29927) \u2014 craft sub-requests to test protected routes.\nURL\uff1ahttps://github.com/m2hcz/PoC-for-Next.js-Middleware\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-06-30T10:50:08.000000Z"}, {"uuid": "ad18003d-cef2-4c9b-8551-67d56ea4a0da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23900", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\u306e\u691c\u8a3c\nURL\uff1ahttps://github.com/kuzushiki/CVE-2025-29927-test\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T16:29:51.000000Z"}, {"uuid": "daece8a9-6aa3-40c7-a028-b3e78393206f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23827", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 Authorization Bypass in Next.js Middleware\nURL\uff1ahttps://github.com/arvion-agent/next-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T13:26:52.000000Z"}, {"uuid": "c29b3903-46c9-4bde-b77a-38fe224d6b7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24347", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC for CVE-2025-29927: Next.js Middleware Bypass Vulnerability. Demonstrates how x-middleware-subrequest can bypass authentication checks. Includes Docker setup for testing.\nURL\uff1ahttps://github.com/alihussainzada/CVE-2025-29927-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T10:40:30.000000Z"}, {"uuid": "e750110f-196d-47db-9f8b-b946b15145a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24346", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aGhost Route detects if a Next JS site is vulnerable to the corrupt middleware bypass bug (CVE-2025-29927)\nURL\uff1ahttps://github.com/takumade/ghost-route\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T10:36:11.000000Z"}, {"uuid": "611b90a3-f7eb-4bda-9d39-600c01c10ff4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/GithubRedTeam/32191", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-30567 - WordPress WP01 < Path traversal\nURL\uff1ahttps://github.com/Knotsecurity/CVE-2025-29927-NextJs-Middleware-Simulation\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-16T08:13:08.000000Z"}, {"uuid": "766b4e97-4a71-4da7-9a08-2f1e19645218", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/31851", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aExploit for CVE-2025-29927 (Next.js) - Authorization Bypass\nURL\uff1ahttps://github.com/UNICORDev/exploit-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-14T20:23:09.000000Z"}, {"uuid": "41b8ecfb-117d-4505-b7fb-836720b2c116", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/43099", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC of CVE-2025-29927\nURL\uff1ahttps://github.com/aest3ra/NextJS-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-05T16:40:15.000000Z"}, {"uuid": "10be54ab-e032-40e0-9022-6cdd766543ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23213", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 Proof of Concept\nURL\uff1ahttps://github.com/aydinnyunus/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-23T12:16:20.000000Z"}, {"uuid": "6a567780-ec1c-40a8-8b46-8660e7bdf0ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23790", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js POC for CVE-2025-29927\nURL\uff1ahttps://github.com/azu/nextjs-cve-2025-29927-poc\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T11:53:04.000000Z"}, {"uuid": "0432eea9-d22c-4c90-8900-c02fef483f61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23730", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.Js \u6743\u9650\u7ed5\u8fc7\u6f0f\u6d1e(CVE-2025-29927)\nURL\uff1ahttps://github.com/iSee857/CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T09:30:58.000000Z"}, {"uuid": "2d78ec98-1c06-4e7b-afc6-06675ec1bdde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/51191", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a\ud83d\udd13 Explore CVE-2025-31258 with this PoC demonstrating partial sandbox escape using RemoteViewServices for practical 1-day security practice.\nURL\uff1ahttps://github.com/MKIRAHMET/CVE-2025-29927-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-11T20:56:46.000000Z"}, {"uuid": "a5c720fd-87c3-4885-991a-3958ab9272c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/23697", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aDemo for Next.js middleware bypass - CVE-2025-29927\nURL\uff1ahttps://github.com/fourcube/nextjs-middleware-bypass-demo\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-24T08:09:52.000000Z"}, {"uuid": "aafe4421-df7c-438f-8775-3faa93486274", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25403", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis script checks if a given website running Next.js is vulnerable to CVE-2025-29927, a critical middleware bypass vulnerability.\nURL\uff1ahttps://github.com/ferpalma21/Automated-Next.js-Security-Scanner-for-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-28T03:08:37.000000Z"}, {"uuid": "7e8912fc-842a-426e-b2d0-fb63484f2030", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/52769", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNext.js middleware auth-bypass lab (CVE-2025-29927 simulation)\nURL\uff1ahttps://github.com/amalpvatayam67/day10-nextjs-middleware-lab\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-23T11:24:56.000000Z"}, {"uuid": "ac1ba284-5ac5-49b6-87b0-e732c20c897c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/54095", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aSimple script to attempt a Bypass on a server possibly vulnerable to CVE-2025-29927 (Next.js Middleware)\nURL\uff1ahttps://github.com/diogolourencodev/middleforce\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-04T03:44:40.000000Z"}, {"uuid": "293aee58-bd91-46c1-a73f-9c4af64df819", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/44035", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927 PoC | Auth Bypass Exploit | Python Tool using httpx | Middleware Vulnerability | Ethical Hacking Toolkit\nURL\uff1ahttps://github.com/mickhacking/Thank-u-Next\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-14T18:48:16.000000Z"}, {"uuid": "db882fff-098a-4ff7-965b-e92497c9fd0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/51185", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA method for CVE-2025-31710 and to connect to cmd_skt to obtain a root shell on unisoc unpatched models\nURL\uff1ahttps://github.com/MKIRAHMET/CVE-2025-29927-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-11T19:32:48.000000Z"}, {"uuid": "f4af36f2-5827-474b-ae8b-6bd5af83d0f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/52737", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-29927\nURL\uff1ahttps://github.com/sermikr0/nextjs-middleware-auth-bypass\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-23T06:12:09.000000Z"}, {"uuid": "e4dd9194-79b6-469e-88c0-8cda5dd6d23b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/45834", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a\u2192 poc for CVE-2025-29927\nURL\uff1ahttps://github.com/b4sh0xf/PoC-CVE-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-29T17:26:50.000000Z"}, {"uuid": "7d0b3e62-8379-4e48-96e0-349b472b75e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/NinjaSec/299", "content": "Code execution, and bypass vulnerabilities \u2014 for educational purposes only:\n\n\n1. CVE-2025-47241 \u2013 Whitelist bypass in Browser Use tool (CVSS 9.3)\n2. CVE-2025-25014 \u2013 Prototype pollution in Kibana (CVSS 9.1)\n3. CVE-2025-29927 \u2013 Next.js middleware authorization bypass (CVSS 9.1)\n4. CVE-2025-24813 \u2013 Apache Tomcat path traversal RCE (Critical)\n5. CVE-2025-2783 \u2013 Chrome Mojo use-after-free (High)\n6. CVE-2025-2636 \u2013 WordPress InstaWP plugin LFI (High)\n7. CVE-2025-2505 \u2013 WordPress Age Gate plugin LFI (High)\n8. CVE-2025-2746 \u2013 Kentico CMS auth bypass (CVSS 9.8)\n9. CVE-2025-2747 \u2013 Kentico CMS staging sync auth bypass (CVSS 9.8)\n10. CVE-2025-3066 \u2013 Chrome Site Isolation use-after-free (High)\n11. CVE-2025-46728 \u2013 cpp-httplib DoS vulnerability\n12. CVE-2025-12345 \u2013 Buffer overflow in XYZ app (CVSS 9.0)\n13. CVE-2025-12346 \u2013 SQL injection in ABC web app (CVSS 8.5)\n14. CVE-2025-12347 \u2013 XSS in DEF platform (CVSS 7.8)\n15. CVE-2025-12348 \u2013 Auth bypass in GHI system (CVSS 9.2)\n16. CVE-2025-12349 \u2013 RCE in JKL service via crafted packets (CVSS 9.5)\n17. CVE-2025-12350 \u2013 Privilege escalation in MNO app (CVSS 8.7)\n18. CVE-2025-12351 \u2013 Info disclosure in PQR system (CVSS 7.5)\n19. CVE-2025-12352 \u2013 DoS in STU server (CVSS 6.8)\n20. CVE-2025-12353 \u2013 Directory traversal in VWX app (CVSS 8.0)\n21. CVE-2025-12354 \u2013 Command injection in YZA tool (CVSS 9.1)\n22. CVE-2025-12355 \u2013 Insecure deserialization in BCD lib (CVSS 9.3)\n23. CVE-2025-12356 \u2013 CSRF in EFG portal (CVSS 7.2)\n24. CVE-2025-12357 \u2013 Memory corruption in HIJ driver (CVSS 8.9)\n25. CVE-2025-12358 \u2013 Improper auth in KLM API (CVSS 9.0)\n\n#HackersFactory", "creation_timestamp": "2025-05-07T15:48:27.000000Z"}, {"uuid": "c01622b7-9511-4e26-9a83-7a3a9a00dd00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/ms_YhavfT6nz1IpjuH3beTwzL8M2lpUXtRj6qgr2iuZ0", "content": "", "creation_timestamp": "2025-03-24T09:35:02.000000Z"}, {"uuid": "8ba0d1b1-6525-47d3-9b8f-c9f734b41faf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/NfG2wxT-KyQZJHEuLXZRhdP_yV3P9CCTnZ9CuQXcRTtKeZM", "content": "", "creation_timestamp": "2025-09-12T06:00:05.000000Z"}, {"uuid": "7b59b4ba-32bb-43f9-b4b3-fc935a02ec79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/IIV5eO4oiDl7ki6L0qjriJGCDoktseIjTfwa9caQJZaKbpk", "content": "", "creation_timestamp": "2025-09-17T15:00:06.000000Z"}, {"uuid": "5478932d-fb5b-479c-80fe-36effa104eb7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/NinjaSec/298", "content": "Certainly! Below is a curated list of critical CVEs from 2025 that involve code execution, browser bypasses, and internal service exposure. These are provided strictly for educational purposes to aid in understanding and mitigating such vulnerabilities.\n\n\n\ud83d\udd10 Critical CVEs from 2025 (Educational Use Only)\n\n1. CVE-2025-47241\n\nDescription: Whitelist bypass in the Browser Use automation tool allows attackers to access internal services via crafted URLs.\n\nCVSS Score: 9.3\n\nReference: \n\n\n\n2. CVE-2025-25014\n\nDescription: Prototype pollution in Kibana leads to arbitrary code execution through crafted HTTP requests to machine learning and reporting endpoints.\n\nCVSS Score: 9.1\n\nReference: \n\n\n\n3. CVE-2025-29927\n\nDescription: Authorization bypass in Next.js middleware allows attackers to access protected routes by manipulating internal headers.\n\nCVSS Score: 9.1\n\nReference: \n\n\n\n4. CVE-2025-24813\n\nDescription: \n\nCVSS Score: \n\nReference: \n\n\n\n5. CVE-2025-2783\n\nDescription: \n\nCVSS Score: High\n\nReference: \n\n\n\n6. CVE-2025-2636\n\nDescription: \n\nCVSS Score: High\n\nReference: \n\n\n\n7. CVE-2025-2505\n\nDescription: \n\nCVSS Score: High\n\nReference: \n\n\n\n8. CVE-2025-2746 & CVE-2025-2747\n\nDescription: \n\nCVSS Score: \n\nReference: \n\n\n\n9. CVE-2025-3066\n\nDescription: \n\nCVSS Score: High\n\nReference: \n\n\n\n10. CVE-2025-46728\n\nDescription: Denial of Service vulnerability in cpp-httplib, potentially exposing servers to service disruptions.\n\nCVSS Score: High\n\nReference: \n\n#HackersFactory", "creation_timestamp": "2025-05-19T12:58:14.000000Z"}, {"uuid": "21904861-8739-4688-b746-36de7c499783", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/zQWZRmlZZJlnuRGMIjUF1jUVSyI94XK8md6pgqoM1JwlMZE", "content": "", "creation_timestamp": "2025-09-23T09:00:05.000000Z"}, {"uuid": "b7c7ae44-2c91-4afa-a799-436af4911ac9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/ETHICALHACKERSCOMMUNITY2/4439", "content": "Ghost-Route - Ghost Route Detects If A Next JS Site Is Vulnerable To The Corrupt Middleware Bypass Bug (CVE-2025-29927)\nhttp://www.kitploit.com/2025/04/ghost-route-ghost-route-detects-if-next.html", "creation_timestamp": "2025-04-25T02:24:59.000000Z"}, {"uuid": "b3447e18-05da-4a2a-8ee8-3cc8340bb2dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/TengkorakCyberCrewzz/1675", "content": "Ghost-Route - Ghost Route Detects If A Next JS Site Is Vulnerable To The Corrupt Middleware Bypass Bug (CVE-2025-29927) \u2013 kitploit.com\n\nTue, 22 Apr 2025 20:30:00", "creation_timestamp": "2025-04-22T16:03:33.000000Z"}, {"uuid": "a2ed4625-cea0-43c2-a63b-05dcff67dfa5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/SpiderCodeCommunity1/62", "content": "\u0641\u064a\u0647 \u0628\u0627\u062d\u062b\u064a\u0646 \u0623\u0645\u0646\u064a\u064a\u0646 (\u0631\u0634\u064a\u062f \u0648\u064a\u0627\u0633\u0631 \u0639\u0644\u0627\u0645) \u0627\u0643\u062a\u0634\u0641\u0648\u0627 \u062b\u063a\u0631\u0629 \u062e\u0637\u064a\u0631\u0629 \u0641\u064a \u0627\u0644\u0640 Middleware \u0628\u062a\u0627\u0639 Next.js \u2014 \u0648\u0627\u0644\u0644\u064a \u0647\u0648 \u0627\u0644\u0643\u0648\u062f \u0627\u0644\u0644\u064a \u0628\u064a\u062a\u0646\u0641\u0630 \u0642\u0628\u0644 \u0645\u0627 \u0627\u0644\u0637\u0644\u0628 \u064a\u0648\u0635\u0644 \u0644\u0644\u0640 API \u0623\u0648 \u0627\u0644\u0635\u0641\u062d\u0629\u060c \u0648\u0628\u064a\u0633\u062a\u062e\u062f\u0645\u0648\u0647 \u0645\u062b\u0644\u064b\u0627 \u0641\u064a \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0627\u0644\u0635\u0644\u0627\u062d\u064a\u0627\u062a.\n\n \u0627\u0644\u062b\u063a\u0631\u0629 \u0643\u0627\u0646\u062a \u0628\u0628\u0633\u0627\u0637\u0629 \u0625\u0646\u0643 \u0644\u0648 \u0636\u0641\u062a \u0647\u064a\u062f\u0631 \u0645\u0639\u064a\u0646 \u0641\u064a \u0627\u0644\u0637\u0644\u0628 (x-middleware-subrequest) \u0648\u0643\u062a\u0628\u062a \u0641\u064a\u0647 \u0627\u0633\u0645 \u0627\u0644\u0640 Middleware... \u0627\u0644\u0643\u0648\u062f \u0628\u064a\u062a\u062c\u0647\u0644 \u0627\u0644\u0637\u0644\u0628 \u062a\u0645\u0627\u0645\u064b\u0627 \u0648\u0628\u064a\u0639\u062f\u064a\u0647 \u0643\u0623\u0646 \u0645\u0641\u064a\u0634 \u0623\u064a \u062a\u062d\u0642\u0642 \u0623\u0635\u0644\u0627\u064b!\n\u064a\u0639\u0646\u064a \u062a\u0642\u062f\u0631 \u062a\u0639\u062f\u064a \u0639\u0644\u0649 \u0627\u0644\u0640 Auth\u060c \u062a\u0648\u0635\u0644 \u0644\u0635\u0641\u062d\u0627\u062a \u0645\u062d\u0645\u064a\u0629\u060c \u0623\u0648 \u062d\u062a\u0649 \u062a\u0639\u0645\u0644 XSS \u0623\u0648 \u062a\u062e\u0631\u0628 \u0627\u0644\u0643\u0627\u0634 \u0628\u062a\u0627\u0639 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0648  \u0627\u0644\u062e\u0637\u064a\u0631 \u0625\u0646 \u0643\u0644 \u062f\u0647 \u0628\u064a\u062d\u0635\u0644 \u0645\u0646 \u063a\u064a\u0631 \u0645\u0627 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u064a\u062d\u0633 \u0628\u0623\u064a \u062d\u0627\u062c\u0629 \u063a\u0644\u0637.\n\n\u0627\u0644\u062b\u063a\u0631\u0629 \u062f\u064a \u0627\u062a\u0633\u062c\u0644\u062a \u0628\u0640 CVE-2025-29927\n\u0648\u0646\u0635\u064a\u062d\u0629 \u0644\u0623\u064a \u062d\u062f \u0634\u063a\u0627\u0644 \u0628\u0640 Next.js \u062d\u062f\u0651\u062b \u0644\u0644\u0646\u0633\u062e\u0629 \u0627\u0644\u062c\u062f\u064a\u062f\u0629 \u0641\u0648\u0631\u064b\u0627\u060c \u062e\u0635\u0648\u0635\u064b\u0627 \u0644\u0648 \u0628\u062a\u0633\u062a\u062e\u062f\u0645 Middleware\n\n\n\u0634\u0631\u062d :\n\nhttps://youtu.be/AaCnBOqyvIM?si=8u4JwWkFObQLfIle\n\u0645\u0635\u062f\u0631 :\nhttps://www.facebook.com/share/p/1AFN1pgKUV/", "creation_timestamp": "2025-03-24T18:05:38.000000Z"}, {"uuid": "5483926c-c499-47a7-93d9-fc3a9565ca3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/WJkCmJihJ79zoaOa8mhqqjxZN20V6pb1GGYb_QJb0gQ-mT4", "content": "", "creation_timestamp": "2025-08-28T11:00:08.000000Z"}, {"uuid": "16d01a4c-92ca-421a-8dc8-344bd38a45b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/7c5QRMuZhKLfeM7L4MLy4V9iaRWHJ7vpszDLIJvfvXJe70k", "content": "", "creation_timestamp": "2025-08-20T07:00:11.000000Z"}, {"uuid": "69d69b00-ae00-4ac1-9ecf-d7246542405d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/ETHICALHACKERSCOMMUNITY2/4441", "content": "A Python (https://www.kitploit.com/search/label/Python) script to check Next.js sites for corrupt middleware (https://www.kitploit.com/search/label/Middleware) vulnerability (https://www.kitploit.com/search/label/Vulnerability) (CVE-2025-29927). The corrupt middleware vulnerability allows an attacker to bypass authentication (https://www.kitploit.com/search/label/Authentication) and access protected routes by send a custom header x-middleware-subrequest.  Next JS versions affected:  - 11.1.4 and up  [!WARNING] This tool is for educational purposes only. Do not use it on websites or systems you do not own or have explicit permission to test. Unauthorized testing may be illegal and unethical.\u00a0 Installation Clone the repo git clone https://github.com/takumade/ghost-route.git\ncd ghost-route\n Create and activate virtual environment python -m venv .venv\nsource .venv/bin/activate\n Install dependencies pip install -r requirements.txt\n Usage python ghost-route.py   \n  : Base URL of the Next.js site (e.g., https://example.com) : Protected path to test (default: /admin) : Show response headers (default: False)  Example Basic Example python ghost-route.py https://example.com /admin\n Show Response Headers (https://www.kitploit.com/search/label/Headers) python ghost-route.py https://example.com /admin True\n License MIT License Credits  CVE-2025-29927 (https://nvd.nist.gov/vuln/detail/CVE-2025-29927) Next.js and the corrupt middleware: the authorizing artifact (https://zhero-web-sec.github.io/research-and-things/nextjs-and-the-corrupt-middleware) Rachid A. (https://x.com/zhero___) Yasser Allam (https://x.com/inzo____) \n\nDownload Ghost-Route (https://github.com/takumade/ghost-route)", "creation_timestamp": "2025-04-22T16:22:12.000000Z"}, {"uuid": "fa5c6e27-1fea-42e0-b18c-0ba45ec5dab6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/cybersecplayground/149", "content": "\ud83d\udea8 CVE-2025-29927: Next.js Middleware Bypass Vulnerability \ud83d\udea8\n\n\u26a0\ufe0f A serious vulnerability in Next.js Middleware allows attackers to bypass security mechanisms and exploit vulnerable systems, affecting millions of users!\n\n\ud83d\udd39 Proof of Concept (PoC):\n\n\ud83d\udd25 PoC Repository:\n\n \u2022 CVE-2025-29927\n\n\ud83c\udfaf Over 5 Million Results found on FOFA over the last year!\n\nQueries:\n\n \u2022 HUNTER:\n\nproduct.name=\"Next.js\"\n\n \u2022 FOFA:\n\nproduct=\"NEXT.JS\"\n\n \u2022 SHODAN:\n\nNext.js\n\n\ud83d\udd16 For More Information:\n\ud83d\udcd6 \nCVE-2025-29927 Blog Post\n\n\u2e3b\n\n\ud83d\udca5 Pro Tip: Check your Next.js applications for any unpatched versions of Middleware that could be vulnerable to this bypass!\n\n\u26a0\ufe0f For educational purposes only. Always test responsibly! \u26a0\ufe0f\n\n\ud83d\ude80 Join @CyberSecPlayground for more bug bounty tips, vulnerability details, and exclusive tools!\n\n\ud83d\udd17 Join Now\n\n\ud83d\udce2 #OSINT #FOFA #CyberSecurity #Vulnerability #CVE2025 #BugBounty #NextJS #CyberSecPlayground", "creation_timestamp": "2025-03-25T12:23:24.000000Z"}, {"uuid": "5b164ab8-bd48-4190-b8ad-fed325e02b34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/EYkASGxj3Tiuz3kIHRMz13gpRd2GwQ5wKmXB5D8I7ZTChs4", "content": "", "creation_timestamp": "2025-07-23T21:00:04.000000Z"}, {"uuid": "a5014a98-c726-4643-98dd-a9fbb2a0c5a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/ujDzFFrET3ZH5xQdQMIqDWCAd6Ask0YbS48UdaKK1nCHgf0", "content": "", "creation_timestamp": "2025-07-29T21:00:04.000000Z"}, {"uuid": "14df9709-1859-47f7-b61b-1314497c7945", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/448", "content": "Top Security News for Today\n\nDetect NetxJS CVE-2025-29927 efficiently and at scale  \nhttps://www.reddit.com/r/netsec/comments/1jlqota/detect_netxjs_cve202529927_efficiently_and_at/\n\nAIs as Trusted Third Parties  \nhttps://www.schneier.com/blog/archives/2025/03/ais-as-trusted-third-parties.html\n\nVanHelsing Ransomware: What You Need To Know  \nhttps://www.tripwire.com/state-of-security/vanhelsing-ransomware-what-you-need-know\n\nA Deep Dive into Water Gamayun\u2019s Arsenal and Infrastructure  \nhttps://www.trendmicro.com/en_us/research/25/c/deep-dive-into-water-gamayun.html\n\nFriday Squid Blogging: Squid Werewolf Hacking Group  \nhttps://www.schneier.com/blog/archives/2025/03/friday-squid-blogging-squid-werewolf-hacking-group.html\n\nPayload-Aware Intrusion Detection with CMAE and Large Language Models  \nhttps://arxiv.org/abs/2503.20790\n\nFollow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2025-03-29T09:30:18.000000Z"}, {"uuid": "50ee1c8e-929c-46e6-91c8-5fa68249b69d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/444", "content": "Top Security News for Today\n\nBypassing Detections with Command-Line Obfuscation  \nhttps://www.reddit.com/r/netsec/comments/1jimof1/bypassing_detections_with_commandline_obfuscation/\n\nDoing the Due Diligence: Analyzing the Next.js Middleware Bypass (CVE-2025-29927)  \nhttps://www.reddit.com/r/netsec/comments/1jim7sp/doing_the_due_diligence_analyzing_the_nextjs/\n\nCross-Border Data Compliance: Navigating Public Security Regulations in a Connected World  \nhttps://www.tripwire.com/state-of-security/cross-border-data-compliance-navigating-public-security-regulations-connected\n\nMore Countries are Demanding Back-Doors to Encrypted Apps  \nhttps://www.schneier.com/blog/archives/2025/03/more-countries-are-demanding-back-doors-to-encrypted-apps.html\n\n24th March \u2013 Threat Intelligence Report  \nhttps://research.checkpoint.com/2025/24th-march-threat-intelligence-report/\n\nTakumi, the AI Security Engineer | GMO Flatt Security Inc.  \nhttps://www.reddit.com/r/netsec/comments/1jis8zi/takumi_the_ai_security_engineer_gmo_flatt/\n\nMicrosoft unveils Microsoft Security Copilot agents and new protections for AI  \nhttps://www.microsoft.com/en-us/security/blog/2025/03/24/microsoft-unveils-microsoft-security-copilot-agents-and-new-protections-for-ai/\n\nRust for Malware Development  \nhttps://bishopfox.com/blog/rust-for-malware-development\n\nFollow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2025-03-25T09:30:18.000000Z"}, {"uuid": "d2cc8cc7-08a6-4973-aa53-6fdf0fabd70a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/443", "content": "Top Security News for Today\n\nAfter a decade of open source security educational tools (SecGen), we've launched a hosted platform, Hacktivity  \nhttps://www.reddit.com/r/netsec/comments/1jhvszk/after_a_decade_of_open_source_security/\n\nVanHelsing, new RaaS in Town  \nhttps://research.checkpoint.com/2025/vanhelsing-new-raas-in-town/\n\nCosmos-Reason1: From Physical Common Sense To Embodied Reasoning  \nhttps://arxiv.org/abs/2503.15558\n\nTowards Unified Latent Space for 3D Molecular Latent Diffusion Modeling  \nhttps://arxiv.org/abs/2503.15567\n\nPrivateers Reborn: Digital Letters of Marque  \nhttps://www.reddit.com/r/netsec/comments/1jibf18/privateers_reborn_digital_letters_of_marque/\n\nDoing the Due Diligence: Analyzing the Next.js Middleware Bypass (CVE-2025-29927)  \nhttps://www.reddit.com/r/netsec/comments/1jim7sp/doing_the_due_diligence_analyzing_the_nextjs/\n\nFollow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2025-03-24T09:30:25.000000Z"}, {"uuid": "541b4974-3b4f-4199-9e4d-fdcf72505e4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/wRnl8ntDAGY7eTPUGTtFqIuU6Tsi3Eou0FYkl74XLLXvV2Q", "content": "", "creation_timestamp": "2025-07-27T21:00:04.000000Z"}, {"uuid": "4dd2a648-1181-4f84-a2a8-b818edafdf11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/RbO8HOpVHK90gpne9sqXUdFcGv84T1I4a-t3fo6sMJ1-Pgs", "content": "", "creation_timestamp": "2025-07-15T07:00:11.000000Z"}, {"uuid": "d497a359-57ea-4b2f-ad9a-1e74e9de4e8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/738jfAXXC3LWOZnsDd9qNuo1W8BYdUA_U_0UHdIR_wlIZ1A", "content": "", "creation_timestamp": "2025-09-23T15:00:06.000000Z"}, {"uuid": "faa4a134-0e42-4de2-9e75-76f27cb0f89a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/alm2jq9O8YYx6qnzF2eh-OesfBkG_Ys-e6brm3R0S-yK0DU", "content": "", "creation_timestamp": "2025-06-30T11:00:09.000000Z"}, {"uuid": "8e3dc2aa-a539-450f-94e7-60f020e36815", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/hGK5FcDNylh4RCIfn73xm0ZtZkhj8XnRr-h94Lf4hKlBbzg", "content": "", "creation_timestamp": "2025-07-15T03:00:05.000000Z"}, {"uuid": "e5ec522f-7952-432f-9166-d21fc1407f00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/uWnpZChKZV5yuE-QOEkc-gVigY28ff3y_u3cMKv3pSLH4Sk", "content": "", "creation_timestamp": "2025-07-14T21:00:04.000000Z"}, {"uuid": "01b9cd6e-2126-49f8-977c-f1438340c300", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/ptswarm/234", "content": "Next.js and the corrupt middleware: the authorizing artifact\n\n\ud83d\udc64 by Rachid Allam & Yasser Allam\n\nResearchers have discovered a critical vulnerability in Next.js, a popular framework for building web applications. The flaw allows attackers to bypass middleware responsible for request processing, including authentication and path rewrites.\n\nBy adding the x-middleware-subrequest header with a specific value, an attacker can completely ignore middleware execution, gaining unauthorized access to protected resources. Additionally, the vulnerability can be exploited for denial-of-service (DoS) attacks by poisoning the cache, leading to service disruption.\n\nMany versions of Next.js are affected, making this a widespread security concern.\n\n\ud83d\udcdd Contents:\n\u25cf The Next.js middleware\n\u25cf The authorizing artifact artifact: old code, 0ld treasure\n    \u2022 Execution order and middlewareInfo.name\n\u25cf The authorizing artifact: nostalgia has its charm, but living in the moment is better\n    \u2022 /src directory\n    \u2022 Max recursion depth\n\u25cf Exploits\n    \u2022 Authorization/Rewrite bypass\n    \u2022 CSP bypass\n    \u2022 DoS via Cache-Poisoning (what?)\n    \u2022 Clarification\n\u25cf Security Advisory - CVE-2025-29927\n\u25cf Disclaimer\n\u25cf Conclusion\n\nhttps://zhero-web-sec.github.io/research-and-things/nextjs-and-the-corrupt-middleware", "creation_timestamp": "2025-03-24T06:06:47.000000Z"}, {"uuid": "06fa514f-5258-49c3-bc73-4b7100df7d0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/kasperskyb2b/1674", "content": "\u27a1\ufe0f \u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f APT \u0438 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0418\u0411 \u0437\u0430 \u043d\u0435\u0434\u0435\u043b\u044e\n\n\ud83d\udca1 \u041e\u0442\u0447\u0451\u0442 \u043e \u0440\u0435\u0430\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0438 \u043d\u0430 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u044b \u0432 2024 \u0433\u043e\u0434\u0443: \u0434\u0435\u0442\u0430\u043b\u044c\u043d\u044b\u0439 \u0440\u0430\u0437\u0431\u043e\u0440 \u043f\u0440\u043e\u0444\u0438\u043b\u044f \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0445 \u0438 \u0436\u0435\u0440\u0442\u0432, \u0438\u0437\u043b\u044e\u0431\u043b\u0435\u043d\u043d\u044b\u0445 \u0442\u0430\u043a\u0442\u0438\u043a, \u0442\u0435\u0445\u043d\u0438\u043a \u0438 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432. \n\n\ud83d\udd35\u041f\u043e\u0441\u0442\u0443\u043f\u0430\u044e\u0442 \u043d\u043e\u0432\u044b\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 GitHub-\u043f\u0440\u043e\u0446\u0435\u0441\u0441 tj-actions/changed-file, \u0441\u0443\u0434\u044f \u043f\u043e \u0432\u0441\u0435\u043c\u0443, \u044d\u0442\u043e \u0431\u044b\u043b\u043e \u043b\u0438\u0448\u044c \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u044b\u043c \u0437\u0432\u0435\u043d\u043e\u043c \u0432 \u0430\u0442\u0430\u043a\u0435 \u043d\u0430 Coinbase. \u0427\u0442\u043e \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u043e, \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435, \u043f\u043e\u0445\u043e\u0436\u0435, \u0438\u0437 \u0415\u0432\u0440\u043e\u043f\u044b (\u0430 \u043d\u0435 \u043a\u0430\u043a \u0432\u044b \u043f\u043e\u0434\u0443\u043c\u0430\u043b\u0438, \u043f\u0440\u043e\u0447\u0438\u0442\u0430\u0432 \u0441\u043b\u043e\u0432\u043e Coinbase).\n\n\u26aa\ufe0f\u041b\u0430\u043d\u0434\u0448\u0430\u0444\u0442 \u0443\u0433\u0440\u043e\u0437 \u0434\u043b\u044f \u0441\u0438\u0441\u0442\u0435\u043c \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u043e\u0439 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0430\u0446\u0438\u0438. \u0412 \u0446\u0435\u043b\u043e\u043c \u043f\u043e \u043c\u0438\u0440\u0443 \u0432 4 \u043a\u0432\u0430\u0440\u0442\u0430\u043b\u0435 2024 \u0447\u0438\u0441\u043b\u043e \u0430\u0442\u0430\u043a\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u043a\u043e\u043c\u043f\u044c\u044e\u0442\u0435\u0440\u043e\u0432 \u0410\u0421\u0423 \u0422\u041f \u043d\u0435\u0437\u043d\u0430\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0441\u043d\u0438\u0437\u0438\u043b\u043e\u0441\u044c, \u043d\u043e \u0432 8 \u0440\u0435\u0433\u0438\u043e\u043d\u0430\u0445, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0420\u043e\u0441\u0441\u0438\u044e, \u043e\u0442\u043c\u0435\u0447\u0435\u043d \u0440\u043e\u0441\u0442.\n\n\ud83d\udfe1\u041d\u043e\u0432\u0430\u044f \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f APT Mirror Face/Earth Kasha/APT10 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u0430 \u043d\u0430 \u044f\u043f\u043e\u043d\u0441\u043a\u0438\u0435 \u0433\u043e\u0441\u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0438 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0432 \u0441\u0444\u0435\u0440\u0435 \u043a\u043e\u0441\u043c\u043e\u0441\u0430, \u043a\u043e\u043d\u0441\u0430\u043b\u0442\u0438\u043d\u0433\u0430 \u0438 \u0421\u041c\u0418. \u0418\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442\u0441\u044f \u0431\u044d\u043a\u0434\u043e\u0440 Uppercut/Anel \u0438 AsyncRAT.\n\n\ud83d\udd35\u0413\u0440\u0443\u043f\u043f\u0430 UAT-5918, \u043f\u0435\u0440\u0435\u0441\u0435\u043a\u0430\u044e\u0449\u0430\u044f\u0441\u044f \u0441 Volt Typhoon/Flax Typhoon/Earth Estries, \u0430\u0442\u0430\u043a\u0443\u0435\u0442 \u0442\u0430\u0439\u0432\u0430\u043d\u044c\u0441\u043a\u0438\u0435 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0434\u043b\u044f \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u0434\u043e\u043b\u0433\u043e\u0441\u0440\u043e\u0447\u043d\u043e\u0433\u043e \u0448\u043f\u0438\u043e\u043d\u0441\u043a\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0435\u0442\u0435\u0432\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0435. \n\n\ud83d\udd35\u0420\u0430\u0437\u0431\u043e\u0440 \u0441\u043b\u043e\u0436\u043d\u043e\u0433\u043e \u0431\u044d\u043a\u0434\u043e\u0440\u0430 Betruger, \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u0435\u043c\u043e\u0433\u043e \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u043e\u0439 RansomHub.\n\n\ud83d\udfe2\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2025-23120 \u0432 Veeam Backup & Replication \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a RCE. \n\n\ud83d\udfe2\u0427\u0442\u043e \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0445\u0443\u0436\u0435 \u00ab\u0443\u043c\u043d\u043e\u0433\u043e \u043b\u0438\u0446\u0435\u043d\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f\u00bb? \u0422\u043e\u043b\u044c\u043a\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0443\u0442\u0438\u043b\u0438\u0442\u0435 \u0443\u043c\u043d\u043e\u0433\u043e \u043b\u0438\u0446\u0435\u043d\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f, \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u0435\u0441\u043b\u0438 \u044d\u0442\u043e Cisco.\n\n\ud83d\udfe3\u041d\u0430 \u0432\u044b\u0445\u043e\u0434\u043d\u044b\u0445 \u0432\u044b\u0448\u043b\u043e \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0435 \u043e \u043d\u0435\u043f\u0440\u0438\u044f\u0442\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-29927 \u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0430 Next.js, \u043e\u0431\u0445\u043e\u0434 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0441 CVSS 9.1. \u0412 Shodan \u0441\u0432\u0435\u0442\u0438\u0442\u0441\u044f 300 \u0442\u044b\u0441\u044f\u0447 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0441\u0430\u0439\u0442\u043e\u0432.  \n\n\ud83d\udd35\u0414\u0440\u0435\u0432\u043d\u0438\u0439 \u043e\u0431\u0440\u0430\u0437\u0435\u0446 ransomware Albabat \u043d\u0435\u043e\u0436\u0438\u0434\u0430\u043d\u043d\u043e \u043e\u0431\u0437\u0430\u0432\u0451\u043b\u0441\u044f \u0432\u0435\u0440\u0441\u0438\u044f\u043c\u0438 \u0434\u043b\u044f macOS \u0438 Linux.\n\n\ud83d\udfe3\u041e\u0442\u0447\u0451\u0442 \u043e \u0434\u0435\u044f\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u0438 \u0430\u0440\u0442\u0438\u0441\u0442\u043e\u0432 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 BlackLock, \u0440\u0430\u043d\u0435\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 \u043a\u0430\u043a ElDorado.\n\n\ud83d\udfe3\u041c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u0430\u044f \u0441\u0435\u0442\u044c \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0441\u0430\u0439\u0442\u043e\u0432 WordPress \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u0441 2016 \u0433\u043e\u0434\u0430 \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u04212 \u0438 TDS. \u0410\u0432\u0442\u043e\u0440\u044b \u044d\u0442\u043e\u0433\u043e \u0431\u043e\u0442\u043d\u0435\u0442\u0430, \u043d\u0430\u0437\u0432\u0430\u043d\u043d\u043e\u0433\u043e DollyWay, \u0434\u0430\u0436\u0435 \u043f\u0430\u0442\u0447\u0430\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043d\u0430 \u00ab\u0441\u0432\u043e\u0438\u0445\u00bb \u0441\u0430\u0439\u0442\u0430\u0445 \u0438 \u0432\u044b\u0447\u0438\u0449\u0430\u044e\u0442 \u0412\u041f\u041e \u043a\u043e\u043d\u043a\u0443\u0440\u0435\u043d\u0442\u043e\u0432.\n\n\ud83d\udfe2\u041d\u043e\u0432\u044b\u0439 \u0438\u043d\u0444\u043e\u0441\u0442\u0438\u043b\u0435\u0440 SVC, \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u0447\u0435\u0440\u0435\u0437 \u0444\u0438\u0448\u0438\u043d\u0433 \u0441 \u044f\u043d\u0432\u0430\u0440\u044f, \u0432\u043e\u0440\u0443\u0435\u0442 \u0432\u0441\u0451 \u0447\u0442\u043e \u043e\u0431\u044b\u0447\u043d\u043e, \u043f\u043b\u044e\u0441 \u0434\u0430\u043d\u043d\u044b\u0435 \u0438\u0437 \u043f\u0440\u0438\u0432\u0430\u0442\u043d\u044b\u0445 \u043c\u0435\u0441\u0441\u0435\u043d\u0434\u0436\u0435\u0440\u043e\u0432.\n\n\ud83d\udfe3\u0410 Arcane stealer \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u043f\u0440\u0435\u0438\u043c\u0443\u0449\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u043e \u0447\u0435\u0440\u0435\u0437 Youtube. \n\n\u2733\ufe0f \u041d\u0435 \u0441\u043e\u0432\u0441\u0435\u043c \u043f\u043e \u043f\u0440\u043e\u0444\u0438\u043b\u044e \u043a\u0430\u043d\u0430\u043b\u0430, \u043d\u043e \u043f\u0440\u043e\u0439\u0442\u0438 \u043c\u0438\u043c\u043e \u043d\u0435 \u043c\u043e\u0436\u0435\u043c: \u0433\u043e\u0434 \u043d\u0430\u0437\u0430\u0434 \u0443 Keenetic \u0443\u0442\u0435\u043a\u043b\u0438 \u0434\u0430\u043d\u043d\u044b\u0435 \u043c\u043e\u0431\u0438\u043b\u044c\u043d\u043e\u0433\u043e \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f \u0438 \u0432\u043e\u0442 \u043d\u0430\u043a\u043e\u043d\u0435\u0446 \u043e\u043d\u0438 \u0440\u0435\u0448\u0438\u043b\u0438 \u0441\u043e\u043e\u0431\u0449\u0438\u0442\u044c \u043e\u0431 \u044d\u0442\u043e\u043c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c. \u041d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u0445\u0440\u0430\u043d\u0438\u0442\u0441\u044f \u043e\u0447\u0435\u043d\u044c \u043c\u043d\u043e\u0433\u043e \u0434\u0430\u043d\u043d\u044b\u0445, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043f\u0430\u0440\u043e\u043b\u0438 Wi-Fi \u0438 \u043a\u043b\u044e\u0447\u0438 VPN.\n\n#\u043d\u043e\u0432\u043e\u0441\u0442\u0438 #APT #\u0434\u0430\u0439\u0434\u0436\u0435\u0441\u0442 #\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 @\u041f2\u0422", "creation_timestamp": "2025-03-24T09:54:25.000000Z"}, {"uuid": "ccd8eef6-a9a9-4626-93ef-36214619fce4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/u6h4hxOLEGJo8756pzIINeRXaaCHoOOF066El4a2wQI-Fp0", "content": "", "creation_timestamp": "2025-06-08T03:00:06.000000Z"}, {"uuid": "498a64bd-c123-4743-b43b-4ba78db44204", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/RUsue10hp_19qxxxnszqstv3dPyWvXCGTsW2FWqa6-VcIzU", "content": "", "creation_timestamp": "2025-06-08T11:00:06.000000Z"}, {"uuid": "a1bf59d9-b49e-43fa-9309-f6336deaa56d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/RI-_21kCug8goZ0C3JnPo37PWj4aEq3YCcYWRw-aWosNv28", "content": "", "creation_timestamp": "2025-03-25T13:24:16.000000Z"}, {"uuid": "dfaee3fb-3d99-462c-8a17-a05b34933d8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/cvedetector/21921", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-30218 - Next.js Cross-Origin Request Exposure\", \n  \"Content\": \"CVE ID : CVE-2025-30218 \nPublished : April 2, 2025, 10:15 p.m. | 20\u00a0minutes ago \nDescription : Next.js is a React framework for building full-stack web applications. To mitigate CVE-2025-29927, Next.js validated the x-middleware-subrequest-id which persisted across multiple incoming requests. However, this subrequest ID is sent to all requests, even if the destination is not the same host as the Next.js application. Initiating a fetch request to a third-party within Middleware will send the x-middleware-subrequest-id to that third party. This vulnerability is fixed in 12.3.6, 13.5.10, 14.2.26, and 15.2.4. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-03T01:01:29.000000Z"}, {"uuid": "eeb5ce42-4b01-43f7-a017-4c45325cf06b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/cvedetector/20824", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-29927 - Next.js Authorization Bypass in Middleware\", \n  \"Content\": \"CVE ID : CVE-2025-29927 \nPublished : March 21, 2025, 3:15 p.m. | 1\u00a0hour, 28\u00a0minutes ago \nDescription : Next.js is a React framework for building full-stack web applications. Prior to 14.2.25 and 15.2.3, it is possible to bypass authorization checks within a Next.js application, if the authorization check occurs in middleware. If patching to a safe version is infeasible, it is recommend that you prevent external user requests which contain the x-middleware-subrequest header from reaching your Next.js application. This vulnerability is fixed in 14.2.25 and 15.2.3. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-21T18:29:15.000000Z"}, {"uuid": "d9ac2f39-24f6-4079-929a-8158c947c1bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/16716", "content": "Proof-of-Concept Exploit: Next.js Middleware (CVE-2025-29927)\n\nCredit: youtube.com/@gotr00t0day/", "creation_timestamp": "2025-05-02T00:35:14.000000Z"}, {"uuid": "66ffc9b1-6e53-42aa-bc70-bebc7552ca42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/ViralCyber/11860", "content": "#CVE-2025-29927 #Bypass_Authorization #Node.js\n\u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc Bypass Authorization \u06a9\u0647 \u0628\u0631\u0627\u06cc Next.js \u062f\u0631 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc \u0632\u06cc\u0631 13.5.6 \u0648 14.2.25 \u0648 15.2.3 \u0622\u0645\u0627\u062f\u0647 \u0627\u0633\u062a.\n\n\u0645\u0627\u062c\u0631\u0627 \u0627\u0632 \u0627\u06cc\u0646 \u0642\u0631\u0627\u0631 \u06a9\u0647 Middleware \u0647\u0627\u06cc \u0637\u0631\u0627\u062d\u06cc \u0634\u062f\u0647 \u062f\u0631 Next.js \u0627\u0645\u06a9\u0627\u0646 \u0627\u0639\u0645\u0627\u0644 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0631 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u062f\u0631\u06cc\u0627\u0641\u062a\u06cc \u0631\u0627 \u062f\u0627\u0631\u0646\u062f\u060c \u0642\u0628\u0644 \u0627\u0632 \u0627\u06cc\u0646\u06a9\u0647 \u067e\u0627\u0631\u0633\u0631 \u06a9\u062f \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0631\u0648 \u062a\u062d\u0648\u06cc\u0644 \u0628\u06af\u06cc\u0631\u0647.\n\n\u062f\u0648\u0631 \u0632\u062f\u0646 \u0645\u06a9\u0627\u0646\u06cc\u0632\u0645 \u06a9\u0646\u062a\u0631\u0644 \u0633\u0637\u062d \u062f\u0633\u062a\u0631\u0633\u06cc \u06cc\u0627 Authorization \u0632\u0645\u0627\u0646\u06cc \u062f\u0648\u0631 \u0632\u062f\u0647 \u0645\u06cc\u0634\u0648\u062f \u06a9\u0647 \u062f\u0631 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0627\u0631\u0633\u0627\u0644\u06cc Header \u0628\u0627 \u0646\u0627\u0645 x-middleware-subrequest \u062a\u0646\u0638\u06cc\u0645 \u0634\u062f\u0647 \u06a9\u0647 \u0628\u062f\u0627\u0646 \u0645\u0639\u0646\u06cc \u0627\u0633\u062a \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0628\u0647 Middleware \u062a\u062d\u0648\u06cc\u0644 \u062f\u0627\u062f\u0647 \u0634\u0648\u062f \u0648 \u062f\u0631 \u0634\u0631\u0637 \u062e\u0637 707 \u0627\u0648\u0645\u062f\u0647 \u06a9\u0647 \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u0646\u0627\u0645 middleware \u062f\u0631 \u0622\u0631\u0627\u06cc\u0647 subrequests \u0642\u0631\u0627\u0631 \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u0647 \u067e\u0627\u0633\u062e \u0627\u0632 \u0646\u0648\u0639 ()NextResponse.next \u0628\u0631\u06af\u0634\u062a \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0648 \u0639\u0645\u0644\u06cc\u0627\u062a \u0647\u0645\u0632\u0645\u0627\u0646 \u0628\u0627 ()Promise.resolve \u0627\u062f\u0627\u0645\u0647 \u067e\u06cc\u062f\u0627 \u062e\u0648\u0627\u0647\u062f \u06a9\u0631\u062f.\n\n\u0627\u06af\u0631 Header \u0628\u0627 \u0646\u0627\u0645 x-middleware-subrequest \u062a\u0639\u0631\u06cc\u0641 \u0634\u062f\u0647 \u0628\u0627\u0634\u0647\u060c Middleware \u0628\u0631\u0631\u0633\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0648 \u0646\u0627\u062f\u06cc\u062f\u0647 \u06af\u0631\u0641\u062a\u0647 \u0648 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0631\u0648 \u0628\u0647 \u0645\u0642\u0635\u062f \u0627\u0635\u0644\u06cc \u0647\u062f\u0627\u06cc\u062a \u062e\u0648\u0627\u0647\u062f \u06a9\u0631\u062f \u06a9\u0647 \u0627\u06cc\u0646\u062c\u0627 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0631\u062e \u062e\u0648\u0627\u0647\u062f \u062f\u0627\u062f.\n\n\u0645\u0642\u062f\u0627\u0631 MiddlewareInfo.name \u0645\u06cc\u062a\u0648\u0646\u0647 \u0628\u062f\u0633\u062a \u0628\u06cc\u0627\u062f \u0648 \u0645\u0633\u06cc\u0631 Middleware \u0627\u0645\u06a9\u0627\u0646 \u062a\u0634\u062e\u06cc\u0635 \u0631\u0648 \u062f\u0627\u0634\u062a\u0647 \u0686\u0631\u0627 \u06a9\u0647 \u062f\u0631 \u0645\u0633\u06cc\u0631\u06cc\u0627\u0628\u06cc pages \u0648 \u0628\u0627 \u0646\u0627\u0645 middleware.ts_ \u0642\u0631\u0627\u0631 \u062f\u0627\u0634\u062a\u0647 \u0627\u0633\u062a.\n\nEXP\n@Unk9vvN", "creation_timestamp": "2025-03-24T15:21:04.000000Z"}, {"uuid": "7cfcf1ef-c975-49d7-a17a-fb85c7b03f5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/MalaysiaHacktivistz/11765", "content": "Ghost-Route - Ghost Route Detects If A Next JS Site Is Vulnerable To The Corrupt Middleware Bypass Bug (CVE-2025-29927) \u2013 kitploit.com\n\nTue, 22 Apr 2025 20:30:00", "creation_timestamp": "2025-04-22T18:03:33.000000Z"}, {"uuid": "5993d350-f10b-4fa4-b5e6-b6c81520d0f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "Telegram/F5kfGmelK0qA2VA-l_g5edkStVsw7pcVVKt4kLH4OQRnxQ", "content": "", "creation_timestamp": "2025-03-24T11:31:14.000000Z"}, {"uuid": "5eccbbd4-e58d-4e21-b128-b77b971d74c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/TengkorakCyberCrewzz/30201", "content": "Ghost-Route - Ghost Route Detects If A Next JS Site Is Vulnerable To The Corrupt Middleware Bypass Bug (CVE-2025-29927) \u2013 kitploit.com\n\nTue, 22 Apr 2025 20:30:00", "creation_timestamp": "2025-04-22T18:03:33.000000Z"}, {"uuid": "3b9906a8-ed60-4c87-99e9-2c19aa37bdfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/MalaysiaHacktivistz/3553", "content": "Ghost-Route - Ghost Route Detects If A Next JS Site Is Vulnerable To The Corrupt Middleware Bypass Bug (CVE-2025-29927) \u2013 kitploit.com\n\nTue, 22 Apr 2025 20:30:00", "creation_timestamp": "2025-04-22T18:03:33.000000Z"}, {"uuid": "a1448f87-1d22-458a-bf84-ce24fd04f66e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/bsHc6hYCGodfaBywPUDWD_0bkK7FEhNfpE-j_IqFjWAY4yA", "content": "", "creation_timestamp": "2025-03-28T16:00:11.000000Z"}, {"uuid": "12b6dc3e-b167-4efb-a2e9-f7b772aacc4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1632", "content": "CVE-2025-29927 Proof of Concept\n\nhttps://github.com/aydinnyunus/CVE-2025-29927", "creation_timestamp": "2025-03-26T17:24:22.000000Z"}, {"uuid": "defccb54-71b1-45e6-8504-35bcb9cbe9de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1630", "content": "Next.js Middleware Authorization Bypass (CVE-2025-29927)\n\nhttps://github.com/vulhub/vulhub/tree/master/next.js/CVE-2025-29927", "creation_timestamp": "2025-03-25T13:43:34.000000Z"}, {"uuid": "dd046559-a81b-4603-bc8d-5ee8f8f80211", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/aPCPdIPGkODZoxCaDJ8O34mKLW0JTsj39l_jw_IG9BQaA-s", "content": "", "creation_timestamp": "2025-03-28T10:00:05.000000Z"}, {"uuid": "04578fa0-94f7-4873-9809-be84277e42a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/IpSkdng-DvuBirFh-8nYsY3OgxKRFd_quSrS72XmwTlTwLs", "content": "", "creation_timestamp": "2025-03-28T00:00:06.000000Z"}, {"uuid": "6ab58c13-e97f-4a38-b361-5fcfbe326161", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/b6Jl7wzygae-BXh-Se_wt-DVRMooLLWTuD3fD59x1efx7TE", "content": "", "creation_timestamp": "2025-03-23T04:00:07.000000Z"}, {"uuid": "805f386a-0a55-4a92-923b-e03341fdb273", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/qjcsrLnNv5S51XdLRJunsGHGk2KwaV-0XadKXvz_YUZIu4A", "content": "", "creation_timestamp": "2025-03-23T00:00:09.000000Z"}, {"uuid": "0810196c-59c8-4eec-bed5-81dfa56a7555", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/vUGMvstSYOoUDxx-O4QTLDAV49BnFrwaRby9_jbBdmSD8WM", "content": "", "creation_timestamp": "2025-03-22T22:00:06.000000Z"}, {"uuid": "c4f38995-9ed8-456e-a005-c0b1982e1fe4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/u4QW-PhXvOdEz-DPSjg467lSb3twIBu6R_ivSGfCYMMnQBw", "content": "", "creation_timestamp": "2025-03-26T22:00:05.000000Z"}, {"uuid": "f4785089-63d6-4fa3-8550-5223901b405d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/TWpQ0c_C6YvvOFPQCx9RaG8kEfWk1VJPeSRhUGPNV2cSPY0", "content": "", "creation_timestamp": "2025-04-02T23:00:06.000000Z"}, {"uuid": "cb97778a-5f0e-400e-9184-da0a2c7efa85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/qSYtNRP0IMj2sucim70p_fDnM44Yjw-sDTcgemaoM4YTLgI", "content": "", "creation_timestamp": "2025-04-01T13:00:06.000000Z"}, {"uuid": "cb284a98-0298-41b9-9eb0-ee49c843c1a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/otAoaF9HglqRlYurEeGfVVpj7vUDLPFmRTv87nx_aQ9uiE0", "content": "", "creation_timestamp": "2025-03-27T04:00:06.000000Z"}, {"uuid": "35c338b2-513f-4001-b4e4-9b9249a24e2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/iAtNSwWp7cf35MLu3yHbbe9UursYBxHX-AKTGv3U1vLSqvc", "content": "", "creation_timestamp": "2025-04-01T11:00:06.000000Z"}, {"uuid": "3b1363d3-d7b2-47a1-b159-5d92486dfd62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/vQ0Sm3TCgGLw115KTy13Xlz5wNa50qfz0GIGSnr52V26EMk", "content": "", "creation_timestamp": "2025-03-26T20:00:07.000000Z"}, {"uuid": "015e4265-7055-423c-9979-aee833cc5534", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/YrbI_dt818NPMUxxPwmqr_pW9uiKUjv8OvWWBWCo12-kqN4", "content": "", "creation_timestamp": "2025-04-02T17:00:12.000000Z"}, {"uuid": "5a5fc9fe-c7b7-481b-b52a-a846354a5521", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/4n6mfM_xv4uavydfdKkdBPOPI2gWNV_wMBFRreY1FAnSrV4", "content": "", "creation_timestamp": "2025-03-28T16:00:09.000000Z"}, {"uuid": "efe43d57-03f3-440a-bafb-41ed88a8fa2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/kXZvd58izIQiU_MwCLyFKxklQIm_6IOm5Js_A1mT7KUydck", "content": "", "creation_timestamp": "2025-04-02T11:00:05.000000Z"}, {"uuid": "bb62d087-81b1-4268-929e-9507a026c5c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Oj1Gm0LSQ6zMYq9CDOc6JWlWhSvAkbg9hPN2p7tpqu4VtaY", "content": "", "creation_timestamp": "2025-03-25T22:00:06.000000Z"}, {"uuid": "c1495cf1-a8cd-403c-8725-ebfdb1df12d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/xcGRNH_EwORElMZ3bAgEoqPH6J5Y6svZZQkqCrYpVnROx_w", "content": "", "creation_timestamp": "2025-03-30T11:00:06.000000Z"}, {"uuid": "e2dcc89f-669f-43e9-b739-444a7013883d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/WizMHfr-zYUvVJaO53zTNz7NT7awFeLg0wepLTamJ53Bvuo", "content": "", "creation_timestamp": "2025-03-29T20:00:07.000000Z"}, {"uuid": "5182835a-aa25-4d7a-9b48-77dfe375dad9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/gptxcG5Jvg83wR56zKKTs8fGBMXLE7PNQ-HCnd7IEVmsKx8", "content": "", "creation_timestamp": "2025-04-05T21:00:06.000000Z"}, {"uuid": "36d7d6a9-4671-4fd8-b5b5-406c67f6522f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/1FU9JKkDtGpcne3Ep4nL0vHVyNGozrk1LcnkQn-O_2rRjKw", "content": "", "creation_timestamp": "2025-03-27T22:00:06.000000Z"}, {"uuid": "fc50c28c-a72f-45c0-8334-b1ffe7004ce0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/0LxSJuadzx1gFt5LjOzQKudcVVss8Xi_oBXbI34BaDEWNfs", "content": "", "creation_timestamp": "2025-03-27T16:00:07.000000Z"}, {"uuid": "915d0a1a-a590-4757-8905-820caf00fb9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/dTUgk8GObROOjGU8Vy5Hdn1MXIpr9wUQqGef_7FiGWlqFgw", "content": "", "creation_timestamp": "2025-03-27T10:00:06.000000Z"}, {"uuid": "925215d0-6d8b-459e-a1a2-a1bcfdfadb5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/xrSOLi_Ndmn0wR_FEbBdlzmDVMAv25t2d-NjmhGGLeu57TM", "content": "", "creation_timestamp": "2025-04-02T05:00:06.000000Z"}, {"uuid": "10f507ca-41d3-4e9e-a982-6d98eb71a7f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/XNLx_ZMfaYJPSssBYVCxDS29QMLR-1ADDL8FdocgP4IFZM4", "content": "", "creation_timestamp": "2025-04-03T09:00:06.000000Z"}, {"uuid": "a1e96229-2e6c-4c27-ae41-63198d7404f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/60gE655Eblig7kjvivAQ0buza0eLtX9h5_F_jq6AyX-e9zw", "content": "", "creation_timestamp": "2025-03-25T16:00:10.000000Z"}, {"uuid": "20a8fb96-770b-4973-a186-167fdf22ee79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/h6cJ-Bb4gGrhYNIaq1cPfx6WXODL6SvZsQo9w20oGjI_o2g", "content": "", "creation_timestamp": "2025-04-13T21:00:05.000000Z"}, {"uuid": "aba53be4-1249-4276-b87a-82c643bc1e9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/S6VJZCEtnsvYjBlLt3__8k7cd1SGolH21EEfYkD1jnOqybU", "content": "", "creation_timestamp": "2025-03-30T13:00:05.000000Z"}, {"uuid": "0b3b990d-c6ad-48ed-a13c-caf019201b8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/ubBm10qhDTP9MXroU9jiPc4W2J15yebyKMDltYLLTb-Bk7k", "content": "", "creation_timestamp": "2025-04-13T17:00:07.000000Z"}, {"uuid": "d2946b99-3ab7-4709-a193-34356eb888ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/jugPolFPlglHUcgQOfXJundEsc_sTfJEDQSC3utb4wUBt-0", "content": "", "creation_timestamp": "2025-04-08T21:00:06.000000Z"}, {"uuid": "36b65eff-bace-4220-a135-cdc188d90610", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/PFczZxou3M8bxtA_ogzzcgh7g-AmtdGPjCcJVMEUDXCS9Y4", "content": "", "creation_timestamp": "2025-04-08T17:00:08.000000Z"}, {"uuid": "32ae23e6-1ec5-46ff-9111-1781e33679b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/NpG85aq7tLrhk2BRDw3d-JYvHHf0NJAv_t6hPSlAsFpVKhc", "content": "", "creation_timestamp": "2025-04-10T05:00:10.000000Z"}, {"uuid": "547dcfb4-bc68-448a-ba32-1d7b63a5ceb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/abp-92o5hKBAk_DtUBF145InVAyFbzPIrVHjJ0eU3_qJ9UM", "content": "", "creation_timestamp": "2025-04-22T01:00:07.000000Z"}, {"uuid": "512300be-5bd4-48f6-905e-f56f1d794bc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Hfte5K5JRMTfmEi8KMw9E8ziTEtCcWsXnQMYOD3-afvSXGU", "content": "", "creation_timestamp": "2025-04-05T23:00:06.000000Z"}, {"uuid": "b0ecef3f-fb6b-4174-abdd-713f8b8ce044", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/l-RUKEq1u5JC4p5gtwKJVjQtOGsljXG_cScAzYuNwcOFMHM", "content": "", "creation_timestamp": "2025-04-02T01:00:08.000000Z"}, {"uuid": "092cba73-bc33-43d1-b360-aaac8c11aef8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/N8uq1Jx0g0gbfuBCg8wzq4C3UqiEx5PBm4E8_nw5MDhPdA4", "content": "", "creation_timestamp": "2025-04-01T23:00:05.000000Z"}, {"uuid": "6f26d3c8-9105-4931-9342-2099bcb8d018", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/iXXrSRZXi-ojvdasxd-BMH7IqLKZibvE0e6rFuxhoF-GkT8", "content": "", "creation_timestamp": "2025-03-29T16:00:07.000000Z"}, {"uuid": "61ffee86-371f-447f-b383-adf8ca051887", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/eGKt8kKwx_eQc5bu5I9PYPM2cFEbI_Wro1vivFVNnBKzGhk", "content": "", "creation_timestamp": "2025-03-29T10:00:06.000000Z"}, {"uuid": "17ccee43-c16f-44c2-bd30-6a18e0ddff7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/KggYeN27jZ-a4rfgVHT2MGe0BAzOSuPW6YEwI7pxp7JEmks", "content": "", "creation_timestamp": "2025-03-29T08:00:08.000000Z"}, {"uuid": "2f8d8941-9838-43d1-8af6-087d6777b3b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/KpkCeSE5Vlf_mLfqYCWmJamGDRo0xesaIdEM43dG6i0cCf0", "content": "", "creation_timestamp": "2025-04-17T17:00:13.000000Z"}, {"uuid": "b099f7c4-f01f-4305-af42-de04dbb0e7d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/AY95cmPbDu5Ys6k83NsK0yNyOIktNGra7DpD3Rddj1Ig7Pg", "content": "", "creation_timestamp": "2025-04-03T23:00:06.000000Z"}, {"uuid": "b1c12dc8-2754-4bbd-881c-da1d786f3669", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/mIQYUSqdZG0qC4ccPPwRpa360xwamTmZCIxoO7vEILe4Sa0", "content": "", "creation_timestamp": "2025-04-15T05:00:10.000000Z"}, {"uuid": "3f978739-3cd5-4d53-be96-ea47e0fc7781", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/S8evqPLoGvKFCYHeTINL4ie15PDtB1zbRa6NYmcOYj_DCuM", "content": "", "creation_timestamp": "2025-03-27T08:00:07.000000Z"}, {"uuid": "e6d53551-0d99-4bf7-906b-d654fb4e1bb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Uy93u5fzD15QgLfpWZdhtzPpWo-K400RMrt7kTqJlUxItLk", "content": "", "creation_timestamp": "2025-04-17T01:00:08.000000Z"}, {"uuid": "4f9bd0e5-74cc-482e-9c36-efc409512ba9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/QQZulGQZ-c3MpjwEQ4QFRhKUiBHZ2y5K88-7UD6uVG6sxDc", "content": "", "creation_timestamp": "2025-03-26T04:00:07.000000Z"}, {"uuid": "4a67e0e2-b45f-4b4c-8627-9f5fc81f57f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/CeQ1yh7OvzihbEoW1SoyhVOZQiuMkQZ5ztAxiTGIHTmr8QU", "content": "", "creation_timestamp": "2025-03-26T04:00:06.000000Z"}, {"uuid": "cb7e6169-ba8d-4eb4-a8f7-4251670e504d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Iegk-mk7b4gRMuoPBuKGulcUZlutdsJ2Znl-MBCh_FpJK8g", "content": "", "creation_timestamp": "2025-04-06T17:00:06.000000Z"}, {"uuid": "f1c02962-3e6b-4972-b171-6248c641fac7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/URqOiJy6jj4g4EvmcBVRx9BvwVfWdwMKgkptgqRz_hsO8qo", "content": "", "creation_timestamp": "2025-04-12T17:00:11.000000Z"}, {"uuid": "e9282e31-e71f-4dcf-8bf3-43cf3b20a4e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/L3qHfVp5x1avwO8pxBTf9bu-HT60-x98hU6VVbkjPley9dQ", "content": "", "creation_timestamp": "2025-04-18T09:00:07.000000Z"}, {"uuid": "881adb0d-1d35-4511-8418-24d1e80f3fc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/SYmGj_MDj-F682IcXl4wrcSlV57ttmjlosZ04VZo999eeGs", "content": "", "creation_timestamp": "2025-04-07T05:00:06.000000Z"}, {"uuid": "0bfe7d5e-bc49-4fe9-afda-a00544dd7690", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/KTusQ1Zl6g16yFMJpcG6QZ51BLDyVFDkHCq2qzLVp_gALks", "content": "", "creation_timestamp": "2025-04-12T05:00:07.000000Z"}, {"uuid": "d2b080bd-887b-4415-b02a-ad53482e9fd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/jIRsH1oLHQcZvaPNlxDU5BJtZnc15zFAaVoXr2MLHdS-3r0", "content": "", "creation_timestamp": "2025-04-28T21:00:06.000000Z"}, {"uuid": "4996d67d-a55c-4e5c-adb7-9a233e15de2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/A1O7WKXHB9clDzZYd4ZMA3szheiLB_qo-tJ8mGUODQmNFjY", "content": "", "creation_timestamp": "2025-04-16T17:00:08.000000Z"}, {"uuid": "b77dada6-52bf-4073-9e38-5513bd3aa64b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/wJJNpcmq9kx21MPfY9-4icgXC2_RjU8KWi9ZvsTo6oz7fwk", "content": "", "creation_timestamp": "2025-04-07T01:00:08.000000Z"}, {"uuid": "fe3667f0-52be-464c-9b08-bf024f18abf2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/r84uk1c1f1koqzztiTdxByQ9BLtYAaDiWUWNZ6l_8-95JYw", "content": "", "creation_timestamp": "2025-05-07T17:00:13.000000Z"}, {"uuid": "e8e3bee7-a72f-4773-888f-ae9c0955b2cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Vj3yBYYkYbLaud5ygahnU_3G6kYxmhBX_ge6KhfvcG22Fnk", "content": "", "creation_timestamp": "2025-04-07T17:00:14.000000Z"}, {"uuid": "9f2bd20e-3d1f-4972-8a0f-6a6e96e09f4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/hAF6FKdpjYuECXQoPP2zwfPMJS3VwjnUj1G2aKjirn0WF2A", "content": "", "creation_timestamp": "2025-04-07T17:00:07.000000Z"}, {"uuid": "fac54676-4b33-446e-b74c-8af8831bff01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/3-ZHnGIziHQfiAv_nnRcq-K1CX5YmX9HY0dHsXamLuxzSs0", "content": "", "creation_timestamp": "2025-04-09T23:00:06.000000Z"}, {"uuid": "5f77724c-0638-45da-90f8-a97e295887fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/k3S0feTcrb9_PdTo9W8kdn20Sf3cJ5JR-Hb7yAFT_t4uViI", "content": "", "creation_timestamp": "2025-03-25T10:00:06.000000Z"}, {"uuid": "2ed7fecd-c3fa-4b70-8f15-4ed72d229c8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/_tBYQ5sXHOPpZPlcFwVWhcPBFfo28rK-2OYMPBuQVz7F5zc", "content": "", "creation_timestamp": "2025-04-25T21:00:06.000000Z"}, {"uuid": "d9ad7976-564d-46bd-909b-2b74eefbdef1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/hamX_hI5yzIYjKWWv7LiY3F27OagmVDHwswKvlF8SqWE-rw", "content": "", "creation_timestamp": "2025-05-04T13:00:06.000000Z"}, {"uuid": "f1d18de7-c926-4a6e-b051-a8eaf841f90c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/KZLuLei3i2n7XC6e6zprP-B6OUDrwAOeGpLergYRR6Q-lSo", "content": "", "creation_timestamp": "2025-03-25T12:00:06.000000Z"}, {"uuid": "ecb7003d-d18a-4bbf-a2be-982426b9db7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/Bv5dxy_V5soxsvLh8l7xGypCiAqkJocQ9bLW1ZDnBcCxd0M", "content": "", "creation_timestamp": "2025-03-24T20:00:05.000000Z"}, {"uuid": "aa7f4b5e-a0fa-40c6-a0f6-314b32ad93f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/VuRUu-_hR7R74eOPx36fHA29ubiAsTvJUkxBZB9FS5sqcH8", "content": "", "creation_timestamp": "2025-04-29T13:00:07.000000Z"}, {"uuid": "33aeb2d7-0ddd-46cf-922b-0caf3fc1b2c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/8TsqCuqhLhm6r8kKKjPB0VUm6k4BRD_fx-ZYTlUSQYA3m_4", "content": "", "creation_timestamp": "2025-03-24T16:00:07.000000Z"}, {"uuid": "95b68439-ae1a-44d4-aa77-2ae1b70c235c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/As92OAZC29RxaApN-TJBcdYpVfrjZ9mNHg9UZQxtQM37C4s", "content": "", "creation_timestamp": "2025-03-24T10:00:05.000000Z"}, {"uuid": "fba72af5-040c-441a-ba86-fa40f69cb7ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/w1bL0ZfQbZjC6kNLjY6qJg4sGK5mjn3UxkyFp-Fo5l10hpw", "content": "", "creation_timestamp": "2025-03-24T04:00:05.000000Z"}, {"uuid": "6b9cb4a6-1e64-4e06-b000-c527c34417d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/PwwJAzTb-IdG19a4lkKUuUkLQSIKKrHtPLjHlAbBLV6HlJc", "content": "", "creation_timestamp": "2025-03-25T04:00:08.000000Z"}, {"uuid": "69f6c390-4959-49ed-a118-db79d10708d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/vhKxhjf62z55R-7SGUwls-GgMbIE0bi-JLF0WWGYokDS0q0", "content": "", "creation_timestamp": "2025-03-23T22:00:05.000000Z"}, {"uuid": "c0353b34-ffd2-444d-99c3-ea1bfa643623", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/0GfCOzXtqvFdrqIAVQZHiIyuC3I1uZNIHuukwGa3RPYAk8Y", "content": "", "creation_timestamp": "2025-03-24T22:00:08.000000Z"}, {"uuid": "2e9833c7-f0c5-4f27-8d09-3fe795728a3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/4245", "content": "CVE-2025-29927 Proof of Concept\n\nhttps://github.com/aydinnyunus/CVE-2025-29927", "creation_timestamp": "2025-03-25T13:46:35.000000Z"}, {"uuid": "cb96c57f-f157-4b7d-b078-15559646e522", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/6nHZWxLgwgyMKwZNY4CCS-Ob_vaAl5iyDjwJ0alABpjsTxw", "content": "", "creation_timestamp": "2025-03-23T16:00:12.000000Z"}, {"uuid": "c80bd1b2-af3b-4d1b-bc7d-7719f5c5881f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/UWcQRTLyNnbLIimUgspqi9VApbez8X0RE6Ho1-v9XBNUVo8", "content": "", "creation_timestamp": "2025-03-23T16:00:09.000000Z"}, {"uuid": "b4078728-36ce-4d18-9877-05c667031c34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "Telegram/WaBw3Jw0vb5AGJc9tIYoYKjH3e2RrXYOROLA0rL6tF_sE5E", "content": "", "creation_timestamp": "2025-04-30T05:00:10.000000Z"}, {"uuid": "d9fdda2a-8cb4-418e-9659-c7217bc08e77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/4243", "content": "Next.js Middleware Authorization Bypass (CVE-2025-29927)\n\nhttps://github.com/vulhub/vulhub/tree/master/next.js/CVE-2025-29927", "creation_timestamp": "2025-03-25T13:46:35.000000Z"}, {"uuid": "422a0b6f-08ec-4839-80fb-0b85b7f0a8ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/suboxone_chatroom/7685", "content": "Use Vulhub to reproduce Next.js Middleware Authorization Bypass (CVE-2025-29927)\nhttps://github.com/vulhub/vulhub/tree/master/next.js/CVE-2025-29927", "creation_timestamp": "2025-04-07T11:28:11.000000Z"}, {"uuid": "17a58ff7-9ae4-45e0-ac21-9f6ec64772e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/jj_8tl/345", "content": "We recently looked deeper at the authentication bypass vulnerability in Next.js (CVE-2025-29927) and discovered some intelligent and comprehensive ways to check for the vulnerability. Read more in our blog post: https://t.co/f7f6VKzEcS\n\n\u2728 Shared via Awham AutoFeed \u2728\nChannel: @jj_8tl", "creation_timestamp": "2025-04-11T12:25:54.000000Z"}, {"uuid": "37a899be-ea56-4dd8-9918-ed4a76f41e54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "exploited", "source": "https://t.me/thehackernews/6564", "content": "\ud83d\udc40 6-year-old bugs are back\u2014and being weaponized.\n\nCISA just flagged two 2019 Sitecore RCE flaws (CVE-2019-9874 & 9875) as actively exploited.\n\nBut it doesn\u2019t stop there:\n\u27a1\ufe0f Next.js auth bypass (CVE-2025-29927) is under live attack\n\u27a1\ufe0f DrayTek routers face fresh waves targeting old RCE/LFI bugs.\n\n\ud83d\udd17 Details: https://thehackernews.com/2025/03/cisa-flags-two-six-year-old-sitecore.html\n\nOld CVEs. New exploits. Patch now.", "creation_timestamp": "2025-03-27T07:26:21.000000Z"}, {"uuid": "6662eedb-6ad2-4198-9545-8e7c63bf79bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/thehackernews/6539", "content": "\u26a0\ufe0f Critical Next.js security flaw\u2014PATCH NOW!\n\nA 9.1 CVSS bug (CVE-2025-29927) lets attackers bypass auth checks in middleware and access admin-only pages.\n\nExploit details are now public.\n\n\ud83d\udee0\ufe0f Fixed in: v12.3.5, v13.5.9, v14.2.25, v15.2.3\n\ud83d\udee1\ufe0f Can't patch? Block x-middleware-subrequest headers.\nThis is urgent. Middleware-based auth alone isn't safe.\n\n\ud83d\udc49 Read the full advisory: https://thehackernews.com/2025/03/critical-nextjs-vulnerability-allows.html", "creation_timestamp": "2025-03-24T10:20:22.000000Z"}, {"uuid": "4ad065db-7598-483d-8b24-2a5c223baae0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/9773", "content": "I Scanned 100,000+ Subdomains For CVE-2025-29927\n\nhttps://www.youtube.com/watch?v=7hqBePL0C_I", "creation_timestamp": "2025-04-01T12:40:16.000000Z"}, {"uuid": "69b0c441-aa50-435f-bf73-7ecf5eb67105", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/9754", "content": "Doing the Due Diligence: Analyzing the Next.js Middleware Bypass (CVE-2025-29927) \u203a Searchlight Cyber\n\nhttps://slcyber.io/assetnote-security-research-center/doing-the-due-diligence-analysing-the-next-js-middleware-bypass-cve-2025-29927/", "creation_timestamp": "2025-03-24T11:14:09.000000Z"}, {"uuid": "7ee51373-522f-4376-bb59-4a68b468fce0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11969", "content": "#tools\n#Blue_Team_Techniques\n1. Static Analysis of GUID Encoded Shellcode\nhttps://isc.sans.edu/diary/Static+Analysis+of+GUID+Encoded+Shellcode/31774\n2. Sigma Rule for CVE-2025-29927 (Next.js) Detection\nhttps://github.com/elshaheedy/CVE-2025-29927-Sigma-Rule\n]-> Nuclei template\n3. CVE-2025-30066 Detection Tool\nhttps://github.com/Checkmarx/Checkmarx-CVE-2025-30066-Detection-Tool", "creation_timestamp": "2025-03-26T02:17:15.000000Z"}, {"uuid": "3283cede-2335-451a-8767-24f025767533", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/suboxone_chatroom/7688", "content": "Unknown vulnerability in CrushFTP, no rating\u2757\ufe0f\n\nThe vulnerability allows attackers to gain unauthenticated access if any HTTP(S) port is exposed in the configuration.\n\nSearch at Netlas.io: \n\ud83d\udc49 Link: https://nt.ls/tI4nF\n\ud83d\udc49 Dork: http.headers.server:\"CrushFTP\"\n\nRead more: https://www.rapid7.com/blog/post/2025/03/25/etr-notable-vulnerabilities-in-next-js-cve-2025-29927/", "creation_timestamp": "2025-04-07T11:29:11.000000Z"}, {"uuid": "be1003cb-3540-4262-9d1b-a16189901255", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/suboxone_chatroom/7709", "content": "\ud83c\udf00 This is wild!\n\nYou\u2019ve probably seen the buzz around the Next.js middleware auth bypass (CVE-2025-29927) \u2014 but there\u2019s another less-known yet similar vulnerability: CVE-2024-51479.\n\nThis flaw allows attackers to bypass authentication by abusing the __nextLocale query parameter in the URL, tricking the middleware into granting access to protected routes.\n\nProof of Concept (PoC):\n\ncurl https://target.com/?__nextLocale=/admin\n\nThis vulnerability was fixed in Next.js v14.2.15, and Vercel-hosted apps have already been patched automatically.\n\nI found a very cool article explaining everything in detail:\n\nhttps://gmo-cybersecurity.com/blog/another-nextjs-middleware-bypass-en", "creation_timestamp": "2025-04-06T23:09:44.000000Z"}, {"uuid": "2801231c-61ba-4013-952d-2b239e0101a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/proxy_bar/2557", "content": "CVE-2025-29927 \u2013 Next.js Middleware Authorization Bypass\n*\nCVSS 9.8\n*\nWriteUp", "creation_timestamp": "2025-03-23T07:16:32.000000Z"}, {"uuid": "f7c84c08-af7d-4885-a3c2-0b3806b58d20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/CyberSecurityIL/67963", "content": "\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05e7\u05e8\u05d9\u05d8\u05d9\u05ea (CVE-2025-29927) \u05d4\u05ea\u05d2\u05dc\u05ea\u05d4 \u05d1-Next.js, \u05e4\u05e8\u05d9\u05d9\u05de\u05d5\u05d5\u05e8\u05e7 \u05e4\u05d5\u05e4\u05d5\u05dc\u05e8\u05d9 \u05dc\u05d1\u05e0\u05d9\u05d9\u05ea \u05d9\u05d9\u05e9\u05d5\u05de\u05d9 \u05d5\u05d5\u05d1 \u05de\u05d1\u05d5\u05e1\u05e1\u05d9 React. \n\n\u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05de\u05d0\u05e4\u05e9\u05e8\u05ea \u05dc\u05ea\u05d5\u05e7\u05e4\u05d9\u05dd \u05dc\u05e2\u05e7\u05d5\u05e3 \u05d1\u05d3\u05d9\u05e7\u05d8 \u05e9\u05e0\u05d5\u05ea \u05d5\u05dc\u05d4\u05e9\u05d9\u05d2 \u05d2\u05d9\u05e9\u05d4 \u05dc\u05d0 \u05de\u05d5\u05e8\u05e9\u05d9\u05ea \u05dc\u05d3\u05e4\u05d9\u05dd \u05e8\u05d2\u05d9\u05e9\u05d9\u05dd.\n\n\u05d4\u05d1\u05e2\u05d9\u05d4 \u05e0\u05d5\u05d1\u05e2\u05ea \u05de\u05d4\u05d0\u05d5\u05e4\u05df \u05e9\u05d1\u05d5 Next.js \u05de\u05d8\u05e4\u05dc \u05d1- x-middleware-subrequest. \n\n\u05d0\u05e0\u05d9 \u05dc\u05d0 \u05d0\u05e8\u05d7\u05d9\u05d1 \u05e2\u05dc \u05db\u05dc \u05d4\u05e4\u05e8\u05d8\u05d9\u05dd \u05d4\u05d8\u05db\u05e0\u05d9\u05d9\u05dd \u05db\u05d0\u05df \u05d0\u05d1\u05dc \u05d7\u05e9\u05d5\u05d1 \u05e9\u05ea\u05d3\u05e2\u05d5 \u05e9\u05d4\u05d2\u05e8\u05e1\u05d0\u05d5\u05ea Next.js \u05d4\u05de\u05ea\u05d5\u05e7\u05e0\u05d5\u05e5 \u05d4\u05df 12.3.5, 13.5.9, 14.2.25 \u05d5-15.2.3. \n\n\u05e4\u05e8\u05d8\u05d9\u05dd \u05e0\u05d5\u05e1\u05e4\u05d9\u05dd \u05d1\u05d3\u05d9\u05d5\u05d5\u05d7 \u05d4\u05e8\u05e9\u05de\u05d9 - \u05db\u05d0\u05df\n\nhttps://t.me/CyberSecurityIL/6870\n\n#\u05d7\u05d5\u05dc\u05e9\u05d5\u05ea", "creation_timestamp": "2025-03-24T19:25:16.000000Z"}, {"uuid": "46c23fe4-331a-4a10-8f3b-fd5dac984f15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/true_secator/6880", "content": "\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Akamai \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u044e\u0442 \u043e \u043f\u043e\u043f\u0430\u0434\u0430\u043d\u0438\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0435 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 Next.js \u043f\u043e\u0434 \u043f\u0440\u0438\u0446\u0435\u043b \u0445\u0430\u043a\u0435\u0440\u043e\u0432.\n\n\u041f\u0435\u0440\u0432\u044b\u0435 \u043f\u043e\u043f\u044b\u0442\u043a\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0432\u0430\u0436\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Next.js \u0431\u044b\u043b\u0438 \u0437\u0430\u0444\u0438\u043a\u0441\u0438\u0440\u043e\u0432\u0430\u043d\u044b \u043c\u0435\u043d\u0435\u0435 \u0447\u0435\u043c \u0447\u0435\u0440\u0435\u0437 \u043d\u0435\u0434\u0435\u043b\u044e \u043f\u043e\u0441\u043b\u0435 \u0432\u044b\u043f\u0443\u0441\u043a\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439.\n\n\u0420\u0435\u0447\u044c \u0438\u0434\u0435\u0442 \u043e CVE-2025-29927 (CVSS 9,1), \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0431\u044b\u043b\u0430 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430 21 \u043c\u0430\u0440\u0442\u0430, \u0447\u0435\u0440\u0435\u0437 \u043d\u0435\u0434\u0435\u043b\u044e \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0431\u044b\u043b\u0438 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0432 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 Next.js 15.2.3 \u0438 14.2.25. \u0418\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0442\u0430\u043a\u0436\u0435 \u0431\u044b\u043b\u0438 \u0432\u043a\u043b\u044e\u0447\u0435\u043d\u044b \u0432 \u0432\u0435\u0440\u0441\u0438\u0438 13.5.9 \u0438 12.3.5, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u044f\u0432\u0438\u043b\u0438\u0441\u044c \u043d\u0430 \u0432\u044b\u0445\u043e\u0434\u043d\u044b\u0445.\n\nNext.js \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0435 \u041f\u041e \u0434\u043b\u044f \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u0442\u0430\u043a\u0436\u0435 \u043e\u0442\u0432\u0435\u0447\u0430\u0435\u0442 \u0437\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e, \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u044e \u0438 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0443 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u043e\u0432 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0430 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0439 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a x-middleware-subrequest \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0434\u043b\u044f \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u044d\u0442\u0438\u043c\u0438 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430\u043c\u0438 \u0438 \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u044f \u0431\u0435\u0441\u043a\u043e\u043d\u0435\u0447\u043d\u044b\u0445 \u0446\u0438\u043a\u043b\u043e\u0432.\n\n\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0435\u0433\u043e \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0430, \u0438\u043c\u0435\u044e\u0449\u0435\u0433\u043e \u043f\u0440\u0435\u0434\u0441\u043a\u0430\u0437\u0443\u0435\u043c\u043e\u0435 \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u0442\u044c \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u044b\u0435 \u0437\u0430\u043f\u0440\u043e\u0441\u044b, \u0438\u043c\u0438\u0442\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a, \u0438 \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u044c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0432 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0438 Next.js.\n\n\u041f\u0440\u0438 \u043e\u0431\u0445\u043e\u0434\u0435 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0433\u043e \u041f\u041e \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 \u043d\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u0442 \u0441\u0432\u043e\u0438 \u043e\u0431\u044b\u0447\u043d\u044b\u0435 \u043f\u0440\u043e\u0446\u0435\u0434\u0443\u0440\u044b \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0447\u0442\u043e \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u043c\u0443 \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0434\u043e\u0441\u0442\u0443\u043f\u0443 \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u0438\u043b\u0438 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u044b\u043c \u0447\u0430\u0441\u0442\u044f\u043c \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f.\n\n\u0425\u043e\u0442\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u043b\u0438\u0448\u044c \u0440\u044f\u0434 \u0432\u0435\u0440\u0441\u0438\u0439 Next.js, \u043c\u0435\u0442\u043e\u0434\u044b \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0440\u0430\u0437\u043b\u0438\u0447\u0430\u044e\u0442\u0441\u044f \u0432 \u0437\u0430\u0432\u0438\u0441\u0438\u043c\u043e\u0441\u0442\u0438 \u043e\u0442 \u0432\u0435\u0440\u0441\u0438\u0438.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Rapid7, \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0435 \u0432\u043b\u0438\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0437\u0430\u0432\u0438\u0441\u0438\u0442 \u043e\u0442 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f, \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0433\u043e \u041f\u041e \u0438 \u0446\u0435\u043b\u0438 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f.\n\n\u041a\u0430\u043a \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442 \u0432 Rapid7, \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0441\u043b\u0435\u0434\u0443\u0435\u0442 \u0440\u0430\u0441\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c, \u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442\u0441\u044f \u043b\u0438 \u0438\u0445 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f \u0438\u0441\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043d\u0430 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0435 \u041f\u041e \u0434\u043b\u044f \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n\u0412\u0435\u0434\u044c, \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e, \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0435 \u041f\u041e, \u043d\u043e \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u0435\u0442 \u043a\u0430\u043a \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u0434\u043b\u044f API \u0431\u044d\u043a\u044d\u043d\u0434\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0440\u0430\u0431\u043e\u0442\u0430\u044e\u0442 \u0441 \u043b\u043e\u0433\u0438\u043a\u043e\u0439 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043d\u0430 \u0441\u0442\u043e\u0440\u043e\u043d\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u0430.\n\n\u041e\u0431\u0445\u043e\u0434 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0433\u043e \u041f\u041e Next.js \u0444\u0440\u043e\u043d\u0442\u0435\u043d\u0434\u0430 \u043d\u0435 \u043f\u043e\u0432\u043b\u0438\u044f\u0435\u0442 \u043d\u0430 \u0441\u043f\u043e\u0441\u043e\u0431\u043d\u043e\u0441\u0442\u044c \u0431\u044d\u043a\u044d\u043d\u0434\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439.\n\n\u0425\u043e\u0442\u044f \u0435\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u044e\u0442, \u0447\u0442\u043e \u0438\u043c \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043e \u0441\u043b\u0443\u0447\u0430\u044f\u0445 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-29927 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445, \u0442\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435 \u0432 Akamai \u0443\u0436\u0435 \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u044e\u0442, \u043a\u0430\u043a \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0441\u043a\u0430\u043d\u044f\u0442 \u0441\u0435\u0442\u044c \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432, \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u044d\u0442\u043e\u0439 \u043e\u0448\u0438\u0431\u043a\u043e\u0439.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0444\u0438\u043a\u0441\u0438\u0440\u0443\u0435\u043c\u044b\u0435 \u0430\u0442\u0430\u043a\u0438 \u0438\u043c\u0438\u0442\u0438\u0440\u0443\u044e\u0442 \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u043e \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0445 \u043f\u043e\u0434\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 \u0432 \u043e\u0434\u043d\u043e\u043c \u0437\u0430\u043f\u0440\u043e\u0441\u0435, \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u044e\u0449\u0438\u0445 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u044e\u044e \u043b\u043e\u0433\u0438\u043a\u0443 \u043f\u0435\u0440\u0435\u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f Next.js, \u0438 \u043e\u0447\u0435\u043d\u044c c\u0445\u043e\u0436\u0438 c \u043b\u043e\u0433\u0438\u043a\u043e\u0439 PoC, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0438 (\u0432\u043c\u0435\u0441\u0442\u0435 \u0441 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u043c\u0438 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u044f\u043c\u0438) \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0432\u0448\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438.", "creation_timestamp": "2025-03-26T17:00:07.000000Z"}, {"uuid": "5f881f25-4dc3-4f87-a15e-fb934033cbe1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/true_secator/6868", "content": "\u0412 \u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0435 Next.js React \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u043f\u0440\u043e\u0432\u0435\u0440\u043e\u043a \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u043f\u0440\u0438 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2025-29927 \u0438 \u0438\u043c\u0435\u0435\u0442 \u043e\u0446\u0435\u043d\u043a\u0443 CVSS 9,1 \u0438\u0437 10,0. \n\nNext.js \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0439 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a x-middleware-subrequest, \u0447\u0442\u043e\u0431\u044b \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0442\u0438\u0442\u044c \u0437\u0430\u043f\u0443\u0441\u043a \u0431\u0435\u0441\u043a\u043e\u043d\u0435\u0447\u043d\u044b\u0445 \u0446\u0438\u043a\u043b\u043e\u0432 \u0440\u0435\u043a\u0443\u0440\u0441\u0438\u0432\u043d\u044b\u043c\u0438 \u0437\u0430\u043f\u0440\u043e\u0441\u0430\u043c\u0438.\n\n\u041f\u0440\u043e\u043f\u0443\u0441\u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0433\u043e \u041f\u041e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u043f\u0440\u043e\u0441\u0430\u043c \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u044c \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438, \u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u0444\u0430\u0439\u043b\u043e\u0432 cookie \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438, \u043f\u0435\u0440\u0435\u0434 \u0434\u043e\u0441\u0442\u0438\u0436\u0435\u043d\u0438\u0435\u043c \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u043e\u0432.\n\n\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d \u0432 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 12.3.5, 13.5.9, 14.2.25 \u0438 15.2.3. \u0412 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043c\u0435\u0440 \u043f\u043e \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0430\u0442\u044c \u0432\u043d\u0435\u0448\u043d\u0438\u0435 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c\u0441\u043a\u0438\u0435 \u0437\u0430\u043f\u0440\u043e\u0441\u044b, \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0449\u0438\u0435 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a x-middleware-subrequest.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u0420\u0430\u0448\u0438\u0434 \u0410\u043b\u043b\u0430\u043c (\u043e\u043d \u0436\u0435 zhero \u0438 cold-try), \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0432\u0448\u0438\u0439 \u0438 \u0441\u043e\u043e\u0431\u0449\u0438\u0432\u0448\u0438\u0439 \u043e\u0431 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0443\u0436\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u043b \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438, \u0432 \u0441\u0432\u044f\u0437\u0438 \u0441 \u0447\u0435\u043c \u043d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043a\u0430\u043a \u043c\u043e\u0436\u043d\u043e \u0441\u043a\u043e\u0440\u0435\u0435 \u043f\u0440\u0438\u043c\u0435\u043d\u0438\u0442\u044c \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f.\n\n\u041a\u0430\u043a \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442 \u0432 JFrog, \u043e\u0448\u0438\u0431\u043a\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043b\u0435\u0433\u043a\u043e \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u044c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438, \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u043c\u044b\u0435 \u0432 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u043c \u041f\u041e Next.js, \u0447\u0442\u043e \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u0430\u043c, \u0437\u0430\u0440\u0435\u0437\u0435\u0440\u0432\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0434\u043b\u044f \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u043e\u0432 \u0438\u043b\u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0432\u044b\u0441\u043e\u043a\u043e\u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439.\n\n\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u0442\u0430\u043a\u0436\u0435 \u0437\u0430\u044f\u0432\u0438\u043b\u0430, \u0447\u0442\u043e \u043b\u044e\u0431\u043e\u0439 \u0432\u0435\u0431-\u0441\u0430\u0439\u0442, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0439 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u043e\u0435 \u041f\u041e \u0434\u043b\u044f \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0431\u0435\u0437 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0445 \u043f\u0440\u043e\u0432\u0435\u0440\u043e\u043a, \u0443\u044f\u0437\u0432\u0438\u043c \u0434\u043b\u044f CVE-2025-29927, \u0447\u0442\u043e \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c.", "creation_timestamp": "2025-03-24T12:44:29.000000Z"}, {"uuid": "c155122e-5487-4507-a527-fd2aedcc7e4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/information_security_channel/53489", "content": "CVE-2025-29927: Next.js Middleware Authorization Bypass\nhttps://www.offsec.com/blog/cve-2025-29927/\n\nIn this CVE blog, we explore a vulnerability in Next.js stemming from the improper trust of the x-middleware-subrequest header. \nThe post CVE-2025-29927: Next.js Middleware Authorization Bypass (https://www.offsec.com/blog/cve-2025-29927/) appeared first on OffSec (https://www.offsec.com/).", "creation_timestamp": "2025-05-01T21:46:11.000000Z"}, {"uuid": "e77d2211-e390-483b-97c7-3ad72bd6b992", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/9815", "content": "Next.js Middleware Auth Bypass (CVE-2025-29927) and Local File Read via XXE - HackDonalds Challenge\n\nhttps://www.youtube.com/watch?v=KwD_TKZr0YY", "creation_timestamp": "2025-04-17T13:00:46.000000Z"}, {"uuid": "d0bfc5a2-9607-471b-a5f1-60a09d47ff36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/11966", "content": "#exploit\n1. CVE-2025-1974, CVE-2025-24514:\nIngress(Nightmare) NGINX RCE\nhttps://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities\n\n2. CVE-2025-24799, CVE-2025-24801:\nPre-auth SQLi to RCE in GLPI\nhttps://blog.lexfo.fr/glpi-sql-to-rce.html\n\n3. CVE-2025-29927:\nAuthorization Bypass in Next.js Middleware\nhttps://github.com/arvion-agent/next-CVE-2025-29927\n]-> Bypass Checker:\nhttps://github.com/RoyCampos/CVE-2025-29927", "creation_timestamp": "2025-03-26T00:36:58.000000Z"}, {"uuid": "c4368a78-2873-412e-8aef-c8e02ed9cdd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29927", "type": "seen", "source": "https://gist.github.com/paulweezydesign/5825289c7b30ad082cd6e870dfafb050", "content": "", "creation_timestamp": "2026-05-01T13:15:01.000000Z"}]}