Hayden Bleasel

1 exploit Active since Jan 2025
CVE-2025-23027 WRITEUP MEDIUM WRITEUP
next-forge < 3.0.11 - Cleartext Storage of Sensitive Information in .env.example
next-forge is a Next.js project boilerplate for modern web application. The BASEHUB_TOKEN commited in apps/web/.env.example. Users should avoid use of this token and should remove any access it may have in their systems.