CVE-2022-35924: Nextauth.js Authentication Bypass Vulnerability

Ddos August 5, 2022 2 minutes read

This article is available to verified supporters only - contribute to read the full report

Or choose another support option:

Tags: CVE-2022-35924

Search

React2Shell: Max-Score RCE (CVSS 10.0) Triggers Widespread Exploitation by Espionage Groups & Miners
Urgent: Apple Patches Two Critical WebKit Zero-Days Under Active Exploitation Against High-Risk Targets
Emergency Chrome Update: Google Patches New Zero-Day Under Active Attack
Gogs Zero-Day (CVE-2025-8110) Risks RCE for 700+ Servers via Symlink Path Traversal Bypass
CISA KEV Alert: WinRAR Zero-Day Used for Malware Injection and Windows UAF RCE Under Active Attack
Microsoft Patches Three Zero-Days Including Active Cloud Files UAF to SYSTEM and Copilot RCE

We need 30 contributors every month to keep this site up and running.

2 / 30 supporters

Our Websites

Penetration Testing Tools

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works