Vercel · Next.Js · CVE-2018-18282
**Name of the Vulnerable Software and Affected Versions**
Next.js versions 7.0.0 through 7.0.1
**Description**
The issue is related to a cross-site scripting (XSS) problem. It affects the 404 or 500 / error page.
**Recommendations**
For versions 7.0.0 and 7.0.1, update to a version that fixes this issue to prevent XSS attacks.