Critical RCE Vulnerabilities in React and Next.js
TL;DR: React and Next.js are vulnerable in default configurations to unauthenticated RCE with no prerequisites. Our exploitation tests show that a standard Next.js application created via create-next-app and built for production is vulnerable without any specific code modifications by the developer. A critical vulnerability has been identified in the React Server Components (RSC) “Flight” protocol, […]
Guy Built a Compact Camera Using an Optical Mouse
Reddit user Dycus built a camera using the sensor from an optical mouse. After about 65 hours of work, Dycus had a low-resolution black-and-white camera with multiple shooting modes, housed in a nifty 3D-printed body. PetaPixel has previously reported on similar projects that turn old optical computer mice into functional cameras, but Dycus’ project is […]
RCE Vulnerability in React and Next.js
A vulnerability affects certain React packages1 for versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 and frameworks that use the affected packages, including Next.js 15.x and 16.x using the App Router. The issue is tracked upstream as CVE-2025-55182. Fixed in:React: 19.0.1, 19.1.2, 19.2.1Next.js: 15.0.5, 15.1.9, 15.2.6, 15.3.6, 15.4.8, 15.5.7, 16.0.7 The vulnerability also affects experimental canary releases […]
MinIO is now in maintenance-mode
{{ message }} File tree Expand file treeCollapse file tree 1 file changed +14 –0 lines changed Open diff view settings Expand file treeCollapse file tree 1 file changed +14 –0 lines changed Open diff view settings Original file line number Diff line number Diff line change @@ -1,3 +1,17 @@ 1 + # Maintenance […]
Why are my headphones buzzing whenever I run my game?
Background I use rust with my own engine working on an isometric-perspective game inspired from Gnomoria, RimWorld, Dwarf Fortress, etc. Whenever I started my game, my headphones were buzzing. I could play Fortnite, Overwatch or any other game and that doesn’t cause my headphones to buzz. It’s only my game. And it’s really annoying, as […]
Building a Toast Component
Back in 2023, I decided to build a toast library called Sonner. It’s now downloaded over 7,000,000 times per week from npm and used by companies like Cursor, X, and Vercel. It’s also the default toast component in shadcn/ui. When I was making it, the toast “market” was already crowded. So what made Sonner stand […]
Mapping Every Dollar of America’s $5T Healthcare System
Mapping Every Dollar of America’s $5 Trillion Healthcare System A representation of the US Healthcare Financing Flow Sankey diagram in the style of Ernst Haeckel’s Art Forms in Nature. 11 minute read time Follow the money and you might get lost. That’s why I made a diagram for the entire US healthcare system’s financial flows […]
GSWT: Gaussian Splatting Wang Tiles
Given multi-view images of an exemplar scene, our goal is to construct Gaussian Splatting Wang Tiles (GSWT) that can be tiled on arbitrary surfaces and rendered in real time with our novel GSWT renderer. An overview of the entire pipeline is illustrated below. We begin by reconstructing the 3DGS exemplar at multiple LODs. For each […]
Congressional lawmakers 47% pts better at picking stocks
We thank comments from Sumit Agarwal, Ron Kaniel, Roni Michaely, Lyndon Moore, Antoinette Schoar, and seminar/conference participants at the Chinese University of Hong Kong, Columbia Business School, Deakin University, Macquarie University, Peking University (HSBC and Guanghua), Shanghai Lixin University of Accounting and Finance, Tsinghua University, University of Sydney, University of Technology Sydney, 2023 Australasian Finance […]
Helldivers 2 devs slash install size from 154GB to 23GB
It’s no surprise to see modern AAA games occupying hundreds of gigabytes of storage these days, especially if you are gaming on a PC. But somehow, Arrowhead Game Studios, the developers behind the popular co-op shooter Helldivers 2, have managed to substantially cut the game’s size by 85%. As per a recent post on Steam, […]