Yoav Saporta

JFrog Junior Security Researcher

Yoav is a Junior Security Researcher at JFrog Security, where he focuses on identifying and analyzing security vulnerabilities in open source codebases to enhance software security. Experienced in binary exploitation and reverse engineering, Yoav is dedicated to learning and applying the latest techniques in vulnerability research and analysis. He contributes to the team with fresh perspectives and is driven to make a significant impact in the ever-evolving field of digital security.

The Latest From Yoav Saporta

CVE-2025-29927 – Authorization Bypass Vulnerability in Next.js: All You Need to Know

March 24, 2025 | 10 min read

On March 21st, 2025, the Next.js maintainers announced a new authorization bypass vulnerability - CVE-2025-29927. This vulnerability can be easily exploited to achieve authorization bypass. In some cases - exploitation of the vulnerability can also lead to cache poisoning and denial of service. Which versions of Next.js are affected? Next.js 15.x - from version 15.0.0…
Read More

Yoav Saporta

The Latest From Yoav Saporta

CVE-2025-29927 – Authorization Bypass Vulnerability in Next.js: All You Need to Know