Hunt Next.js framework vulnerabilities
hunt-nextjsskillsetup L3★1,791
elementalsouls/Claude-BugHunter ↗What it does
Identify Next.js 13/14/15 auth bypass, SSRF, and cache poisoning vulnerabilities
Best for
Bypassing Server Actions auth or exploiting Image Optimizer SSRF on Next.js hosts.
Inputs
- · Next.js app URL
- · Build ID
- · Action ID
Outputs
- · Bypass payload
- · SSRF callback confirmation
Requires
- · curl
- · Burp
- · Collaborator OOB service
Preconditions
- · Next.js detected
- · Build ID extracted
Failure modes
- · False-positive on 400 from /_next/image allowlist
- · OOB callback not confirmed
Trust signals
- · False-positive guard documented
- · OOB detection vs status-code-only distinguished