CVE-2025-29927

This exploit targets a middleware bypass vulnerability in Next.js, allowing unauthorized access to protected routes. The PoC demonstrates how to bypass middleware restrictions by manipulating request headers or paths.

This repository demonstrates CVE-2025-29927, a Next.js middleware bypass vulnerability where the internal header `x-middleware-subrequest` can be manipulated to skip authentication checks. The PoC includes a test script to verify the bypass and a vulnerable middleware configuration.

This repository contains a scanner tool designed to detect CVE-2025-29927, a vulnerability in Next.js versions below 14.2.25 and 15.2.3. It uses Wappalyzer to identify the Next.js version and checks for vulnerability by sending a crafted HTTP request with the 'x-middleware-subrequest' header.

This is a scanner script designed to detect CVE-2025-29927 by testing various endpoints and payloads related to Next.js middleware vulnerabilities. It checks for differences in responses when injecting specific headers to identify potential vulnerabilities.

This repository provides a Nuclei template to detect CVE-2025-29927, a Next.js authentication bypass vulnerability. It checks for the presence of Next.js and middleware usage via HTTP headers but does not fully confirm exploitability.

This PoC demonstrates an authentication bypass in Next.js middleware (CVE-2025-29927) by exploiting a vulnerability where adding a specific header (`X-Middleware-Subrequest`) allows bypassing middleware logic that should block requests.

This repository demonstrates an authorization bypass vulnerability (CVE-2025-29927) in Next.js 14 by exploiting the `x-middleware-subrequest` header to bypass middleware authentication checks. The PoC includes a vulnerable Next.js application and instructions to reproduce the bypass.

This repository contains a Python script to test for CVE-2025-29927, a Next.js middleware vulnerability allowing authentication bypass via the `x-middleware-subrequest` header. The script sends multiple payloads to check for vulnerability and analyzes response codes and URLs.

This repository provides a detailed writeup and proof-of-concept for CVE-2025-29927, demonstrating an authentication bypass via a custom HTTP header (`X-Middleware-Subrequest`) to access restricted content. It includes step-by-step HTTP request/response examples and replication instructions using `curl`.

This is a functional exploit for CVE-2025-29927, which bypasses Next.js middleware authorization checks by injecting the `x-middleware-subrequest` header. The PoC includes version detection and crafted requests to exploit vulnerable Next.js instances.

This repository contains a scanner for detecting CVE-2025-29927, a Next.js middleware bypass vulnerability. The tool checks for the presence of vulnerable endpoints by sending crafted HTTP headers and analyzing responses.

This PoC demonstrates a middleware bypass vulnerability in Next.js by testing different header combinations to access protected routes without proper authentication. It checks for the presence of protected content in responses to confirm exploitation.

This repository contains a Python-based scanner for detecting CVE-2025-29927, a middleware bypass vulnerability in Next.js applications. It uses Playwright for dynamic crawling and multithreaded scanning to identify internal paths vulnerable to unauthorized access via the `X-Middleware-Subrequest` header.

This repository contains a functional proof-of-concept for CVE-2025-29927, demonstrating a middleware bypass vulnerability in Next.js via the `x-middleware-subrequest` header. The exploit script tests for vulnerability by comparing responses with and without the bypass header.

This PoC demonstrates an authentication bypass in Next.js middleware by manipulating the `x-middleware-subrequest` header to bypass the cookie-based auth check. The middleware redirects unauthenticated users to `/403`, but the bypass allows access to protected routes.

This repository contains a Next.js application with a vulnerable authentication implementation, specifically targeting CVE-2025-29927. The PoC demonstrates an authentication bypass vulnerability in NextAuth.js.

This repository demonstrates an authorization bypass vulnerability in Next.js (CVE-2025-29927) by exploiting the `x-middleware-subrequest` header to bypass middleware protection on the `/protected` route. The PoC includes a Next.js application with a middleware that checks for an authentication cookie, which can be bypassed by sending a specially crafted header.

This repository demonstrates CVE-2025-29927, a Next.js middleware bypass vulnerability where the `x-middleware-subrequest` header can bypass authentication checks. The PoC includes a functional Next.js application with authentication middleware that can be bypassed using the specified header.

This is a Bash script designed to detect and test for CVE-2025-29927, a Next.js middleware bypass vulnerability. It checks for the presence of Next.js, identifies middleware headers, and tests various payloads to determine if the middleware can be bypassed.

This repository provides a writeup and Nuclei template for detecting CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware. The flaw allows attackers to bypass authorization checks by manipulating the x-middleware-subrequest header.

This repository contains a Python-based exploit for CVE-2025-29927, which bypasses Next.js middleware checks by manipulating the `x-middleware-subrequest` header. The tool automates the detection of vulnerable endpoints by comparing responses with and without the exploit header.

This PoC checks for CVE-2025-29927, an authentication bypass vulnerability in Next.js middleware by manipulating the 'x-middleware-subrequest' header. It tests various middleware paths and detects changes in HTTP status codes or content length to confirm exploitation.

This PoC demonstrates CVE-2025-29927, a vulnerability in Next.js middleware that allows attackers to bypass authentication, authorization, and CSP mechanisms using the x-middleware-subrequest header. It includes exploitation scenarios for bypassing authentication, CSP, and cache poisoning.

This is an asynchronous Python scanner for detecting CVE-2025-29927 in Next.js applications. It checks for vulnerable endpoints by analyzing HTTP responses and headers, specifically targeting middleware bypass vulnerabilities.

The repository contains a functional Python exploit for CVE-2025-29927, which bypasses Next.js middleware authorization checks by manipulating the `x-middleware-subrequest` header. The exploit sends crafted HTTP requests to test for vulnerability and checks for protected content in responses.

This PowerShell script tests for CVE-2025-29927, a middleware bypass vulnerability in Next.js applications. It checks for Next.js usage via headers, extracts version information, and tests for the vulnerability by sending a crafted `x-middleware-subrequest` header.

This repository contains a scanner for detecting Next.js installations vulnerable to CVE-2025-29927. It checks for Next.js usage, version detection, and optionally attempts exploitation using a wordlist.

This repository contains a proof-of-concept for CVE-2025-29927, demonstrating a middleware bypass vulnerability in Next.js. The exploit leverages improper path handling to bypass authentication or access controls.

The repository contains a scanner for identifying Next.js sites, likely as a precursor to exploiting CVE-2025-29927. It includes a script to check for Next.js sites and another to scrape Google search results for domains.

This PoC demonstrates an authentication bypass vulnerability (CVE-2025-29927) in a Next.js application by manipulating middleware headers via a proxy server. The exploit allows unauthorized access to the /admin page by injecting a custom header ('X-Middleware-Subrequest') to bypass authentication checks.

This repository contains a functional PoC for CVE-2025-29927, an authentication bypass vulnerability in Next.js middleware. The exploit leverages the `x-middleware-subrequest` header to trigger a recursion depth check, bypassing authentication mechanisms.

This repository provides a Nuclei template for detecting CVE-2025-29927, an authentication bypass vulnerability in Next.js Middleware. It includes techniques for WAF evasion and multi-request variations to improve detection reliability.

This repository provides a test environment for CVE-2025-29927, a Next.js middleware authorization bypass vulnerability. The PoC demonstrates how an attacker can bypass authentication by manipulating the `x-middleware-subrequest` header.

This PoC demonstrates an authorization bypass vulnerability in Next.js middleware by exploiting the `x-middleware-subrequest` header to access protected routes without proper authentication. The middleware logic is bypassed, allowing unauthorized access to the `/protected` route.

This repository contains a functional exploit for CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware. The exploit leverages the improper handling of the `x-middleware-subrequest` header to bypass authentication and authorization checks.

This repository demonstrates an authentication bypass vulnerability (CVE-2025-29927) in a Next.js application. The middleware fails to properly validate the 'auth_token' cookie, allowing unauthorized access to the '/admin' route.

This repository contains a Python-based scanner for detecting CVE-2025-29927, a vulnerability in Next.js that allows unauthorized access to internal files via crafted URLs. The script checks for version detection and tests endpoints for potential bypasses using the 'x-middleware-subrequest' header.

This repository demonstrates an authentication bypass vulnerability (CVE-2025-29927) in Next.js middleware by exploiting the `x-middleware-subrequest` header to bypass token validation. The PoC includes vulnerable and fixed versions for comparison.

This PoC scans for Next.js applications with middleware by analyzing HTTP headers to detect potential vulnerability to CVE-2025-29927, an authentication bypass issue. It does not exploit the vulnerability but identifies indicators of susceptibility.

The repository provides a detailed writeup and proof-of-concept for CVE-2025-29927, an authentication bypass vulnerability in Next.js middleware. The exploit leverages the `x-middleware-subrequest` header to bypass middleware checks in vulnerable versions.

This repository demonstrates an authentication bypass vulnerability in Next.js middleware by exploiting improper cookie validation. The PoC includes a login page that sets cookies, which are then checked by the middleware, allowing bypass with specific credentials.

This repository demonstrates an authentication bypass vulnerability (CVE-2025-29927) in Next.js versions 11.1.4 to 15.2.2 by exploiting the `x-middleware-subrequest` header to bypass middleware authentication checks.

This is a scanner for CVE-2025-29927, designed to detect vulnerable Next.js instances by checking version headers and testing for middleware bypass. It includes functionality to scan multiple hosts and routes concurrently.

This is a proof-of-concept for a Next.js middleware bypass vulnerability (CVE-2025-29927). The PoC sends a crafted HTTP request with a specific header to bypass middleware protection and access protected routes.

This repository demonstrates an authorization bypass vulnerability (CVE-2025-29927) in Next.js middleware by exploiting the `x-middleware-subrequest` header to bypass authentication checks. It includes functional exploit code and detailed instructions for reproduction.

The repository contains a functional Python exploit for CVE-2025-29927, which bypasses Next.js middleware authorization by manipulating the `x-middleware-subrequest` header. The exploit sends crafted HTTP requests to test for vulnerability and checks for protected content in responses.

This repository contains a functional exploit for CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware. The exploit sends a crafted HTTP request with the 'x-middleware-subrequest' header to bypass authentication and authorization checks.

This repository contains a proof-of-concept exploit for CVE-2025-29927, demonstrating an authorization bypass in Next.js middleware by leveraging the `X-Middleware-Subrequest` header. The PoC includes a Docker-based lab setup and a bash script to trigger the vulnerability.

This repository documents CVE-2025-29927, a Next.js middleware bypass vulnerability where the internal header `x-middleware-subrequest` can be manipulated to bypass authentication and other middleware checks. It includes affected versions, mitigation steps, and exploitation techniques across different Next.js versions.

The provided code snippet is a truncated and obfuscated Next.js build artifact, likely part of a larger repository. It does not contain any exploit logic or proof-of-concept code for CVE-2025-29927.

This repository contains a scanner for CVE-2025-29927, which targets Next.js applications. It checks for vulnerable versions and attempts to exploit a middleware bypass vulnerability.

This repository demonstrates CVE-2025-29927, a Next.js middleware bypass vulnerability where the internal header 'x-middleware-subrequest' can be manipulated to skip authentication checks. The PoC includes a Dockerized Next.js application with admin and login pages to test the exploit.

This repository contains a functional Python-based PoC exploit for CVE-2025-29927, which bypasses Next.js middleware authorization by injecting the 'x-middleware-subrequest: middleware' header. The exploit demonstrates unauthorized access to protected routes without authentication.

This repository contains a Python-based scanner for detecting Next.js versions across subdomains to identify potential CVE-2025-29927 vulnerabilities. It enumerates subdomains and checks for affected Next.js versions.

This repository contains a Python-based scanner designed to detect CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware. The scanner checks for middleware presence, redirects, and potential bypasses using header manipulation techniques.

This PoC demonstrates a middleware bypass vulnerability in Next.js by exploiting the `x-middleware-subrequest` header to bypass redirect logic. The exploit shows how repeated middleware path segments can circumvent the intended redirect behavior.

This repository provides a test application for CVE-2025-29927, demonstrating an authentication bypass vulnerability in Next.js middleware. The middleware fails to properly restrict access to the '/secret' path, allowing unauthorized access.

This repository provides a functional proof-of-concept for CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware. The exploit involves injecting a malformed `x-middleware-subrequest` header to bypass authentication checks.

This repository contains a functional lab environment demonstrating CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware. The PoC shows how an attacker can access protected routes without a valid session cookie.

This repository contains a functional proof-of-concept for CVE-2025-29927, demonstrating an authentication bypass vulnerability in Next.js middleware. The exploit leverages the `x-middleware-subrequest: middleware` header to bypass authentication checks for `/admin` routes.

This repository demonstrates CVE-2025-29927, a vulnerability in Next.js middleware that allows bypassing security checks by sending a crafted `x-middleware-subrequest` header with repeated values. The PoC includes a functional Next.js application with middleware logic that can be bypassed using the described technique.

This repository contains Semgrep rules designed to detect code patterns that trust HTTP headers for authentication or authorization decisions, specifically targeting vulnerabilities like CVE-2025-29927. It includes rules for Node.js and Python to flag insecure header usage such as X-Forwarded-For, X-Real-IP, and other headers that can be manipulated by attackers.

This repository contains functional proof-of-concept exploits for three Next.js vulnerabilities (CVE-2025-29927, CVE-2026-27978, CVE-2026-29057), including vulnerable and fixed environments, along with scripts to demonstrate the behavioral differences.

This repository provides detailed technical analysis and mitigation patches for CVE-2025-29927, an auth bypass vulnerability in Next.js 15.0.3, and includes performance fixes for the ALPR Dashboard. It explains the root cause, impact, and mitigation strategies without providing functional exploit code.

The repository lacks actual exploit code and instead references an external PDF for details, which is a common tactic for suspicious repositories. The README provides vague details about the vulnerability without technical depth.

This repository contains a functional Python exploit for CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware due to improper handling of the `x-middleware-subrequest` header. The exploit includes both single-target and batch scanning capabilities, along with a Docker-based vulnerable environment for testing.

This repository contains a deliberately vulnerable Next.js application demonstrating CVE-2025-29927, an authentication bypass vulnerability in Next.js middleware. The PoC shows how crafted headers (x-middleware-subrequest) can bypass cookie-based authentication checks.

The repository provides a functional Proof of Concept (PoC) for CVE-2025-29927, an authentication bypass vulnerability in Next.js middleware. The exploit leverages the internal `x-middleware-subrequest` header to skip middleware execution, allowing unauthenticated access to protected routes.

This repository contains a functional proof-of-concept for CVE-2025-29927, demonstrating an authorization bypass in Next.js middleware by manipulating the 'X-Middleware-Subrequest' header. The PoC includes a Dockerized Next.js environment with a vulnerable middleware implementation and a script to trigger the bypass.

The repository contains a functional Python exploit for CVE-2025-29927, which bypasses Next.js middleware authorization checks by manipulating the `x-middleware-subrequest` header. The exploit sends crafted HTTP requests to test for vulnerability and checks for protected content in responses.

This repository contains a proof-of-concept exploit for CVE-2025-29927, demonstrating a middleware bypass in Next.js via the `x-middleware-subrequest` header and a command injection vulnerability through malicious filenames in an image upload feature.

This repository provides a Docker-based lab environment to demonstrate CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware. The exploit involves manipulating the `X-Middleware-Subrequest` header to bypass authentication and access protected routes.

This repository demonstrates an authorization bypass vulnerability (CVE-2025-29927) in Next.js 14 by exploiting the `x-middleware-subrequest` header to bypass middleware authentication checks. The PoC includes a vulnerable Next.js application and instructions to reproduce the issue.

This repository contains a vulnerable Next.js application demonstrating CVE-2025-29927, which involves authentication bypass or improper access control. The PoC includes a MySQL backend and JWT authentication, with intentionally weak configurations for educational purposes.

This PoC demonstrates a middleware bypass vulnerability in Next.js (CVE-2025-29927) by exploiting the `x-middleware-subrequest` header to skip security checks. The exploit involves sending a crafted HTTP request with the internal header to bypass authentication or other middleware logic.

This repository appears to be a writeup or documentation for a cybersecurity threat intelligence dashboard mentioning CVE-2025-29927 among other vulnerabilities. No actual exploit code is present in the provided files.

This repository provides a detailed comparison between vulnerable and patched versions of a Next.js application, demonstrating the middleware authentication bypass vulnerability (CVE-2025-29927). It includes Docker configurations for both versions, allowing researchers to analyze the differences in behavior.

This repository contains a working proof-of-concept for CVE-2025-29927, demonstrating an authentication bypass vulnerability in Next.js middleware. The exploit leverages a flawed header check that allows bypassing authentication by sending an 'x-token' header containing the string 'admin'.

This repository contains a detailed writeup and proof-of-concept for CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware. The vulnerability allows attackers to bypass authorization checks by spoofing the `x-middleware-subrequest` header.

This repository demonstrates an authorization bypass vulnerability (CVE-2025-29927) in Next.js 14 by exploiting the `x-middleware-subrequest` header to bypass middleware authentication checks. The PoC includes a vulnerable Next.js application and instructions to reproduce the issue.

This PoC demonstrates a path traversal vulnerability (CVE-2025-29927) by exploiting middleware misconfiguration to access unauthorized files. It compares baseline and modified HTTP responses to detect vulnerability patterns without executing malicious payloads.

The repository contains functional exploit code for CVE-2025-29927, demonstrating an authentication bypass vulnerability in Really Simple SSL. The exploit sends a crafted POST request to skip onboarding and potentially gain unauthorized access.

This PoC exploits CVE-2025-29927, an authentication bypass vulnerability in Next.js Middleware versions prior to 12.3.5, 13.5.9, 14.2.25, and 15.2.3. The exploit sends a crafted `x-middleware-subrequest` header to bypass middleware logic, allowing unauthorized access to protected routes.

This repository contains a vulnerable Next.js application demonstrating CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware. The middleware incorrectly checks for a 'loggedin' cookie, allowing unauthenticated access to protected routes.

This repository contains a proof-of-concept for CVE-2025-29927, demonstrating a vulnerability in Next.js middleware where improper JWT validation allows unauthorized access to protected routes. The flag is exposed via an API endpoint that should require admin privileges.

This repository describes an authentication bypass vulnerability in Next.js 15.0.0 via the `x-middleware-subrequest` header, allowing unauthorized access to protected routes. The PoC demonstrates bypassing middleware checks by manipulating the header value.

This PoC demonstrates an authentication bypass vulnerability in Next.js middleware (CVE-2025-29927) by testing routes on www.m6.fr with and without the 'x-middleware-subrequest' header to detect unauthorized access to protected content.

This repository contains a functional exploit for CVE-2025-29927, which bypasses authentication by injecting the `x-middleware-subrequest: middleware` header into HTTP requests. The script supports multiple HTTP methods and checks for successful bypass via response status codes.

The repository contains a basic Next.js project with a middleware file that sets custom headers. No exploit code or vulnerability details are present.

This repository contains a Go-based scanner for detecting Next.js applications vulnerable to CVE-2025-29927, an authentication bypass vulnerability. The tool performs version detection and verification but does not include an exploit payload.

This repository contains a Python-based scanner for detecting CVE-2025-29927, a Next.js middleware bypass vulnerability. The tool tests multiple crafted headers to identify if the target application is vulnerable to authentication bypass.

This PoC demonstrates an authentication bypass vulnerability in a Next.js application by exploiting middleware subrequest handling. The attacker can bypass the middleware restriction by sending a crafted header to access the `/api/flag` endpoint.

This script sends repeated HTTP requests with specific headers targeting Next.js middleware endpoints. It lacks exploit payloads or clear vulnerability demonstration, making it a basic stub or scanner.

This script tests for CVE-2025-29927, an authentication bypass vulnerability in Next.js middleware, by sending various HTTP requests with manipulated headers to check for unauthorized access.

This repository contains a Python-based scanner that automates Shodan searches to identify assets potentially vulnerable to CVE-2025-29927 in Next.js deployments. It filters IPs/domains and uses Nuclei for vulnerability detection.

This repository demonstrates an authentication bypass vulnerability (CVE-2025-29927) in a Next.js application using middleware manipulation. The exploit involves sending a crafted header to bypass JWT verification and access protected routes.

This repository contains a functional PoC for CVE-2025-29927, demonstrating an authorization bypass in Next.js middleware. The exploit leverages a crafted header (`x-middleware-subrequest: middleware`) to bypass authentication and access the protected `/protected` route.

This repository demonstrates CVE-2025-29927, an authorization bypass in Next.js middleware via the `x-middleware-subrequest` header. The PoC includes a simulated Next.js app with protected routes and shows how adding the header bypasses authentication checks.

This PoC demonstrates an authentication bypass in Next.js middleware by exploiting a vulnerability in how the `x-middleware-subrequest` header is processed, allowing unauthorized access to protected routes like `/dashboard`. The exploit involves sending a crafted request with a repeated header value to bypass the middleware's token check.

This repository demonstrates CVE-2025-29927, a critical Next.js middleware bypass vulnerability. The PoC includes a vulnerable Next.js app, an exploit script, and mitigation techniques.

This repository demonstrates an authorization bypass vulnerability in Next.js middleware (CVE-2025-29927) by exploiting the `x-middleware-subrequest` header to bypass authentication checks. The PoC includes a vulnerable Next.js app and an exploit script to test the vulnerability.

The repository contains only a README.md file with minimal content, providing no exploit code, technical details, or proof-of-concept for CVE-2025-29927. It appears to be a placeholder or incomplete submission.

This repository contains a proof-of-concept for an authentication bypass vulnerability in a Next.js middleware. The exploit demonstrates how improper route handling and user validation can be bypassed to access admin routes without proper credentials.

This repository contains a functional PoC for CVE-2025-29927, an authentication bypass vulnerability in Next.js middleware. The exploit manipulates the `x-middleware-subrequest` header to bypass security controls in vulnerable versions.

This repository demonstrates CVE-2025-29927, a middleware bypass vulnerability in Next.js versions 15.x < 15.2.3, 14.x < 14.2.25, and 13.x < 13.5.9. The PoC shows how the `x-middleware-subrequest` header can bypass authentication middleware in vulnerable versions.

The repository contains a bash script that checks for CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware by testing the response codes of requests with and without the 'x-middleware-subrequest' header.

This repository demonstrates an authentication bypass vulnerability in Next.js 13.4.19 via the `x-middleware-subrequest` header. The PoC includes a middleware configuration that can be bypassed by crafting a specific header value, allowing unauthorized access to protected routes.

NextBypass is a tool designed to exploit CVE-2025-29927, an authorization bypass vulnerability in Next.js Middleware via the `x-middleware-subrequest` header. It includes features for terminal and browser-based exploitation, vulnerability scanning, and network monitoring.

This PoC demonstrates an authentication bypass in Next.js middleware by exploiting the `x-middleware-subrequest` header to bypass middleware logic. The vulnerability allows unauthenticated access to protected routes by manipulating the header value.

This PoC demonstrates a middleware bypass vulnerability in Next.js 15.2.2 (CVE-2025-29927) by adding a specific header (`x-middleware-subrequest`) to bypass authentication and access the admin page.

This repository demonstrates an authentication bypass vulnerability in Next.js 15.2.0, allowing unauthorized access to the admin dashboard by bypassing middleware checks. The PoC includes a functional Next.js application with login and dashboard components to showcase the flaw.

The repository contains no exploit code or technical details, only a link to an external blog post. This is characteristic of a social engineering lure.

This repository contains a README file referencing CVE-2025-29927, a vulnerability in Next.js, with a link to a detailed writeup. No exploit code or technical details are provided in the repository itself.

This repository contains a Python-based scanner for detecting CVE-2025-29927, a Next.js permission bypass vulnerability. The tool checks for the presence of the vulnerability by comparing HTTP responses with and without the 'x-middleware-subrequest' header.

This repository demonstrates CVE-2025-29927, an authentication bypass vulnerability in Next.js versions 15.2.2 and earlier. The PoC shows how attackers can spoof the `x-middleware-subrequest` header to bypass middleware authentication checks.

This repository contains a proof-of-concept for CVE-2025-29927, an authentication bypass vulnerability in Next.js 15.2.2. The exploit demonstrates how to bypass authentication checks in the middleware by manipulating the request path or cookies.

This PoC demonstrates an authentication bypass vulnerability in Next.js middleware by exploiting a header injection flaw. The exploit uses a malformed 'x-middleware-subrequest' header to bypass the authentication check in the middleware.

This is a scanner for CVE-2025-29927, a vulnerability in Next.js that allows bypassing security restrictions via manipulated `x-middleware-subrequest` headers. It tests multiple payloads to detect unauthorized access to sensitive routes.

This repository contains a Nuclei template for detecting CVE-2025-29927, a Next.js middleware bypass vulnerability. It checks for the presence of specific headers and attempts to bypass middleware by sending a crafted 'X-Middleware-Subrequest' header.

This repository contains a functional proof-of-concept for CVE-2025-29927, an authentication bypass vulnerability in Next.js middleware. The exploit leverages the `x-middleware-subrequest` header to bypass authentication checks and access restricted routes like `/admin`.

This repository contains a functional proof-of-concept for CVE-2025-29927, an authorization bypass vulnerability in Next.js middleware. The exploit demonstrates how the `x-middleware-subrequest` header can bypass authentication checks, allowing unauthorized access to protected routes and API endpoints.

This repository contains a working proof-of-concept for CVE-2025-29927, an authentication bypass vulnerability in Next.js. The exploit leverages the `x-middleware-subrequest` header to bypass middleware-based access controls.

This repository demonstrates an authentication bypass vulnerability in Next.js 12.2 (CVE-2025-29927) via middleware manipulation. The PoC includes a Dockerized Next.js app with hardcoded credentials and middleware logic that can be bypassed.

This repository provides a detailed writeup on CVE-2025-29927, an authentication bypass vulnerability in Next.js middleware. It explains the exploitation method via the `x-middleware-subrequest` header and discusses detection and mitigation strategies.

This repository contains a Python-based scanner for detecting CVE-2025-29927, a middleware bypass vulnerability in Next.js applications. The tool tests multiple payloads targeting different Next.js versions by sending HTTP requests with manipulated `x-middleware-subrequest` headers.

This repository provides a detailed writeup and proof-of-concept for CVE-2025-29927, demonstrating an authentication bypass via a custom HTTP header (`X-Middleware-Subrequest`) to access restricted content. The PoC includes step-by-step HTTP requests and responses, but no executable exploit code.

The repository contains a Python-based tool designed to detect CVE-2025-29927, a vulnerability in Next.js middleware that allows bypassing protections via manipulated HTTP headers. It tests routes by sending requests with and without specific headers to determine vulnerability status.

This repository contains a functional Next.js application demonstrating CVE-2025-29927, an authentication bypass vulnerability via the `x-middleware-subrequest` header. The middleware logic is intentionally flawed to allow bypass, and the README provides clear exploit methods.

The repository contains a Python script that scans for Next.js applications with middleware by analyzing HTTP headers, indicating potential susceptibility to CVE-2025-29927, an authentication bypass vulnerability. It does not exploit the vulnerability but detects indicators of its presence.

The repository contains Next.js build artifacts and no actual exploit code or technical details about CVE-2025-29927. The files are obfuscated and lack meaningful content related to the vulnerability.

This repository contains a functional PoC for CVE-2025-29927, demonstrating a Next.js middleware bypass vulnerability. The exploit sends HTTP requests with specific headers to test for unauthorized access to protected routes.

This repository contains a Nuclei template for detecting CVE-2025-29927, a Next.js middleware bypass vulnerability. It checks for the presence of specific headers and attempts to bypass middleware by sending a crafted 'X-Middleware-Subrequest' header.

This repository contains a Python script that scans for CVE-2025-29927, a Next.js middleware vulnerability allowing authentication bypass via the `x-middleware-subrequest` header. It tests multiple payloads to detect potential bypasses but does not exploit the vulnerability beyond detection.