Bleeping Computer

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.
InfoQ

Vercel’s Next.js 16: Explicit Caching, Turbopack Stability, and Improved Developer Tooling

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
The Hacker News

Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution

A maximum-severity security flaw has been disclosed in React Server Components (RSC) that, if successfully exploited, could result in remote code execution. The vulnerability, tracked as ...
GitHub

OMK93/laravel-media-zone

Laravel ^10.0, ^11.0, ^12.0 Inertia.js ^1.0 or ^2.0 Vue ^3.3, ^3.4, or ^3.5 Bootstrap ^5.3 Note: This package includes a Vue 3 component styled with Bootstrap 5.3. Make sure your project uses ...
GitHub

[Feature Request]: Enable 'Preview translation values' in JavaScript localization functions

In my project, I have Laravel Idea → Translation → Preview translation values enabled and it works in PHP, e.g.: __('<Translation preview'). I also have the localization functions we use in JS/TS set ...