通告 / Alert

我服务器被 CVE-2025-66478 打了😭️

This site was compromised through exploitation of CVE-2025-66478 on December 5, 2025, at 23:30 (UTC+8).

虽然我这个服务器啥也没存所以没啥严重的后果，但是孩子们快去更新 Next.js 版本😭️

Despite that the server stores no sensitive data and no severe consequences being detected for the time being, we urge all Next.js users and visitors to verify whether your deployed version is vulnerable. If so, please update to the latest patched release without delay.

Yours sincerely,

Webmaster.