{
  "canonical_id": "nextjs--ca9b9a6983",
  "system_id": "nextjs",
  "title": "null origin can bypass dev HMR websocket CSRF checks",
  "reasons": [
    "missing affected/fixed version details"
  ],
  "candidate_count": 1,
  "references": [
    "https://github.com/vercel/next.js/security/advisories/GHSA-jcc7-9wpm-mj36"
  ]
}