heise online

Next.js: Critical gap allows web apps to be compromised

There is a critical security vulnerability in the React framework Next.js. It allows attackers to bypass authorization checks under certain circumstances and thus compromise web apps. Updated packages ...

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.
InfoWorld

Next.js rearchitects router for smoother server-side rendering

Now stable in Next.js 13.4, the new App Router builds on React Server Components and React Suspense to improve data fetching, page loading, and the developer experience. Next.js 13.4, the latest ...
InfoQ

Next.js 13 Targets "Dynamic without Limits" Apps with New, Experimental Features

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Jinsong Yu shares deep architectural insights ...