cybercrime.clubhttps://cybercrime.club/tags/nuxt/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usSat, 25 Apr 2026 23:09:38 -0400Clerk CVE-2026-41248: createRouteMatcher Bypass Skips Middleware Gating Across Next.js, Nuxt, and Astrohttps://cybercrime.club/posts/clerk-cve-2026-41248-createroutematcher-middleware-bypass/Sat, 25 Apr 2026 23:09:38 -0400https://cybercrime.club/posts/clerk-cve-2026-41248-createroutematcher-middleware-bypass/Crafted requests slip past createRouteMatcher in @clerk/nextjs, @clerk/nuxt, and @clerk/astro, bypassing middleware-level route protection. Patches landed across three major version branches per SDK on April 24.vulnerability