Back to directory
WRITEUP #6590

Next.js, cache, and chains: the stale elixir

CVE ResearchCache PoisoningXSSDoS
by@zhero___(Rachid Allam)
Program
Self-managed
Published
Jan 21, 2025
Added to HackDex
Mar 16, 2026
Read Full Writeuphttps://zhero-web-sec.github.io/research-and-things/nextjs-cache-and-chains-the-stale-elixir
RELATED WRITEUPS
Canary Token OSS Security Audit Report (Q2 2024)
XSSDoS
Self-XSS to ATO via Site Features
XSSSelf-XSS
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack
XSS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN
XSSCSP bypass

Built with ❤️ by Shubham Rawat