Security overview · opennextjs/opennextjs-cloudflare · GitHub

Security

No security policy detected

This project has not set up a SECURITY.md file yet.

SSRF vulnerability in opennextjs-cloudflare via /cdn-cgi/ path normalization bypass
GHSA-c7mq-gh6q-6q7c published Mar 4, 2026 by petebacondarwin

High
SSRF vulnerability in opennextjs-cloudflare via /_next/image endpoint
GHSA-rvpw-p7vw-wj3m published Jun 16, 2025 by vicb

High

Learn more about advisories related to opennextjs/opennextjs-cloudflare in the GitHub Advisory Database