{"vulnerability": "cve-2026-44574", "sightings": [{"uuid": "b6f0657a-4c3c-47db-b1fe-ad83545ce786", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44574", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlrau3trkc2n", "content": "CVE-2026-44574 - Next.js: Middleware / Proxy bypass through dynamic route parameter injection\nCVE ID : CVE-2026-44574\n \n Published : May 13, 2026, 5:16 p.m. | 3\u00a0hours, 9\u00a0minutes ago\n \n Description : Next.js is a React framework for building full-stack web applications. From 15...", "creation_timestamp": "2026-05-13T21:31:33.769183Z"}, {"uuid": "0a59b7e2-94c5-4665-81ee-d025c6a57fef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44574", "type": "seen", "source": "https://bsky.app/profile/securestep9.bsky.social/post/3mlcfbrg7m62h", "content": "#NextJS and #React Server Components hit with 12 vulnerabilities with 3 high-severity vulns (CVE-2026-44574, CVE-2026-44578, CVE-2026-44581) requiring the most urgent attention and impacting virtually every production NextJS deployment - patch now!", "creation_timestamp": "2026-05-07T23:40:51.533203Z"}, {"uuid": "5c54dfd1-cbcd-40f7-b677-e581212ad4a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44574", "type": "seen", "source": "https://www.acn.gov.it/portale/w/next.js-aggiornamenti-di-sicurezza-1", "content": "", "creation_timestamp": "2026-05-08T12:09:44.000000Z"}, {"uuid": "c2a4e86f-78bf-497e-b586-d2ff592eec00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44574", "type": "seen", "source": "Telegram/xvoYgOFnUf5jFw65_bW2FC7fcn6orx4l4LTjm0d68ZkOEzo", "content": "", "creation_timestamp": "2026-05-08T03:00:06.000000Z"}, {"uuid": "cc8fe8e3-14f1-48eb-b55f-44eb4da65fba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44574", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mmiwv6n4ju2h", "content": "\ud83d\udccc CVE-2026-44574 - Next.js is a React framework for building full-stack web applications. From 15.4.0 to before 15.5.16 and 16.2.5, applications that rely on middleware ... https://www.cyberhub.blog/cves/CVE-2026-44574", "creation_timestamp": "2026-05-23T07:37:06.635071Z"}]}