CVE-2025-48068 – Next.js App Router Local Source Code Exposure

May 30, 2025

CVE ID : CVE-2025-48068

Published : May 30, 2025, 4:15 a.m. | 48 minutes ago

Description : Next.js is a React framework for building full-stack web applications. In versions starting from 13.0 to before 15.2.2, Next.js may have allowed limited source code exposure when the dev server was running with the App Router enabled. The vulnerability only affects local development environments and requires the user to visit a malicious webpage while npm run dev is active. This issue has been patched in version 15.2.2.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-48381 – CVAT Information Disclosure Vulnerability

Next Article CVE-2025-47952 – Traefik Path Traversal Vulnerability

Report: 71% of tech leaders won’t hire devs without AI skills

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

Too many open browser tabs? This is still my favorite solution – and has been for years

This new browser won’t monetize your every move – how to try it

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

The details of TC39’s last meeting

The details of TC39’s last meeting

Notes Android App Using SQLite

How to Get Security Patches for Legacy Unsupported Node.js Versions

KeySmith – SSH key management

KeySmith – SSH key management

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

CVE-2025-48068 – Next.js App Router Local Source Code Exposure

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Accelerate AI development with Amazon Bedrock API keys

Windows 11 Pro vs Home vs Enterprise: Full Comparison

Upgraded to @Angular Version 19

CVE-2025-47939 – TYPO3 File Upload Vulnerability (Unrestricted File Type Upload)

Leading Experts in Meme Coin Development – Beleaf Technologies

CVE-2025-46327 – Snowflake Golang Driver Local File Configuration TOCTOU

CVE-2025-4306 – PHPGurukul Nipah Virus Testing Management System SQL Injection

FOSS Weekly #25.29: End of Ubuntu 24.10, AUR Issue, Terminal Tips, Screenshot Editing and More Linux Stuff

CVE-2025-48068 – Next.js App Router Local Source Code Exposure

Related Posts