Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

next

Ecosystem:
npm
Package URL:
pkg:npm/next
Total PRs:
51,054 Dependabot PRs
Latest PR:
about 2 hours ago
Unique Repositories:
18,982 repositories
Unique Repos (30 days):
12,683 repositories
Security Advisories
Next.js Allows a Denial of Service (DoS) with Server Actions
GHSA-7m27-7ghc-44w9 CVE-2024-56332 MODERATE published 8 months ago • updated 30 days ago
### Impact A Denial of Service (DoS) attack allows attackers to construct requests that leaves requests to Server Actions hanging until the hosting...
Directory Traversal in Next.js
GHSA-fq77-7p7r-83rj CVE-2020-5284 MODERATE published over 5 years ago • updated about 1 month ago
### Impact - **Not affected**: Deployments on ZEIT Now v2 ([https://zeit.co](https://zeit.co/)) are not affected - **Not affected**: Deployments u...
Open Redirect in Next.js versions
GHSA-x56p-c8cg-q435 CVE-2020-15242 MODERATE published almost 5 years ago • updated 3 months ago
### Impact - **Affected**: Users of Next.js between 9.5.0 and 9.5.3 - **Not affected**: Deployments on Vercel ([https://vercel.com](https://verce...
XSS in Image Optimization API for Next.js
GHSA-9gr3-7897-pp7m CVE-2021-39178 HIGH published about 4 years ago • updated about 1 month ago
### Impact - **Affected:** All of the following must be true to be affected - Next.js between version 10.0.0 and 11.1.0 - The `next.config....
Next.js has cross site scripting (XSS) vulnerability via the 404 or 500 /_error page
GHSA-qw96-mm2g-c8m7 CVE-2018-18282 MODERATE published almost 7 years ago • updated about 1 month ago
Next.js 7.0.0 and 7.0.1 has XSS via the 404 or 500 /_error page.
View all 26 advisories
Recent PRs (filtered by: Removal PRs )
RSS Feed Clear filter
Bump next and react-email in /ecom/react-email-starter

pqan112/ecommerce-api #20

removed Removal PR
Open 10 days ago
pqan112
chore(deps): bump next and react-email in /server

sarvex/immich #53

removed Removal PR
Open 10 days ago
sarvex
Bump next and react-email in /services/react-email-starter

AUBGTheHUB/monolith #1059

removed Removal PR
Open 10 days ago
AUBGTheHUB
Bump next and react-email

neilpoulin/react-email-tailwind-error-reproduction #2

removed Removal PR
Open 10 days ago
neilpoulin
chore(deps): bump next and react-email in /server

sdebruyn/immich #19

removed Removal PR
Open 10 days ago
sdebruyn
Bump next and react-email

st-pauls-tentmakers/Headless-CMS #1

removed Removal PR
Open 25 days ago
st-pauls-tentmakers
Bump next and flowbite-react

ijayhub/home-shopping-firebase #5

removed Removal PR
Closed 4 months ago 3 comments
ijayhub
build(deps): bump next and flowbite-react

ctvnjhnrmmlp/dencryptor #15

removed Removal PR
Open 4 months ago 1 comment
ctvnjhnrmmlp
build(deps): bump next and flowbite-react

MaxLisyanskiy/wedding #18

removed Removal PR
Open 4 months ago
MaxLisyanskiy
Bump next and @eventcatalog/core

ministryofjustice/opg-event-store #143

removed Removal PR
Open 4 months ago
ministryofjustice
Bump next and react-email in /supabase/email-templates

feeddeck/feeddeck #263

removed Removal PR
Closed 4 months ago 2 comments
feeddeck
Bump next and @eventcatalog/core

ministryofjustice/opg-event-store #116

removed Removal PR
Closed 9 months ago 1 comment
ministryofjustice
Package Details
Name: next
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/next
JSON API: View JSON
Security Advisories

26

Active advisories
CRITICAL 1
HIGH 11
MODERATE 9
LOW 5
View All npm Advisories
Package Information
Description:

The React Framework

Repository: https://github.com/vercel/next.js
Homepage: https://nextjs.org
Latest Release: 15.0.3
10 months ago
Dependent Repos: 345,645
Dependent Packages: 8,463
Downloads: 32,544,543
Ranking: Top 0.0603% by dependent repos Top 0.0542% by downloads Top 0.0114% by dependent pkgs
PR Status
Open 26,222 (51.4%)
Merged 5,887 (11.5%)
Closed 13,930 (27.3%)
PR Types
Removal 12 (0.0%)
Minor 18,590 (36.4%)
Major 8,627 (16.9%)
Patch 18,465 (36.2%)