Skip to content
Dashboard

Next.js May 2026 security release

Head of Next.js

Copy link to headingSummary

Copy link to headingRecommended actions

Copy link to headingImpact

Copy link to headingMiddleware and proxy bypass

Copy link to headingDenial of service

Copy link to headingServer-side request forgery

Copy link to headingCache poisoning

Copy link to headingCross-site scripting

Copy link to headingResolution

Copy link to headingAffected versions

Copy link to headingFixed in

Copy link to headingReferences

Ready to deploy?