top | item 46138967 (no title) _el1s7 | 2 months ago Next.js/RSC has become the new PHP :)I guess now we'll see more bots scanning websites for "/_next" path rather than "/wp-content". discuss order hn newest ivanjermakov|2 months ago Inevitable when the line between the client and the server is blurred this much. RCE in a UI library is not a phrase you hear often. jacquesm|2 months ago Maybe one day we'll look back at JavaScript and conclude it was a gigantic mistake ship unaudited executable code to a few billion people every day. load replies (1) Vinnl|2 months ago I have seen a number of attempts at exploiting this on our deployment already. Luckily I saw and was able to apply the patch last night, but as a European, it wasn't great to only get the announcement after dinner time.
ivanjermakov|2 months ago Inevitable when the line between the client and the server is blurred this much. RCE in a UI library is not a phrase you hear often. jacquesm|2 months ago Maybe one day we'll look back at JavaScript and conclude it was a gigantic mistake ship unaudited executable code to a few billion people every day. load replies (1)
jacquesm|2 months ago Maybe one day we'll look back at JavaScript and conclude it was a gigantic mistake ship unaudited executable code to a few billion people every day. load replies (1)
Vinnl|2 months ago I have seen a number of attempts at exploiting this on our deployment already. Luckily I saw and was able to apply the patch last night, but as a European, it wasn't great to only get the announcement after dinner time.
ivanjermakov|2 months ago
jacquesm|2 months ago
Vinnl|2 months ago