admin_hg/cx-nexredirect
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
57 commits 1 branch 1 tag 411 KiB
Commit graph

6 commits

Author SHA1 Message Date
Hendrik
9da40724b4 Upgrade next to 15.5.18 to fix middleware bypass CVEs 
Fixes CVE-2026-44574 (CVSS 8.1), CVE-2026-44575 (CVSS 7.5),
CVE-2026-45109 (CVSS 7.5): attackers could bypass middleware auth
in App Router applications via dynamic route parameter injection
and segment-prefetch routes.

Also fixes CVE-2026-44579 (DoS, CVSS 7.5) and
CVE-2026-44576 (cache poisoning, CVSS 5.4).
 2026-05-15 16:51:04 +02:00
Hendrik
25644e0ea2 v0.1.28 — security: nodemailer 8.0.7 (SMTP CRLF injection fixes), uuid 11.1.1 override durchsetzen 2026-05-01 23:41:30 +02:00
Hendrik
c60a38091b v0.1.26 — SMTP + Passwort-vergessen, Username-Login, SHA256-Verifikation der Update-Tarballs 2026-05-01 22:06:55 +02:00
Hendrik
4bd76c9eda v0.1.14 — direct PDF download via puppeteer + chromium, fix logo on cover 2026-05-01 19:34:08 +02:00
Hendrik
96c541f8f6 v0.1.8 — security: bump next 15.5.15, postcss override, uuid 11 override 2026-05-01 19:00:17 +02:00
Hendrik
d7272c5e58 Initial NexRedirect: redirect server with admin UI, analytics, API tokens, self-update 2026-05-01 17:51:12 +02:00