From 8276ae7be69b070445d490c61aebd58fe68afaee Mon Sep 17 00:00:00 2001
From: Your Name <you@example.com>
Date: Fri, 20 Feb 2026 05:41:26 +0000
Subject: [PATCH] security: update next.js -> 15.3.9, react -> 19.1.2+
 (CVE-2025-55182 RCE fix)

---
 package.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/package.json b/package.json
index 6cd0480..7ec3516 100644
--- a/package.json
+++ b/package.json
@@ -13,13 +13,13 @@
     "bootstrap": "^5.3.2",
     "drift-zoom": "^1.5.1",
     "gsap": "^3.12.7",
-    "next": "15.3.0",
+    "next": "15.3.9",
     "nodemailer": "^7.0.5",
     "odometer": "^0.4.8",
     "photoswipe": "^5.4.4",
     "rc-slider": "^11.1.8",
-    "react": "^19.0.0",
-    "react-dom": "^19.0.0",
+    "react": "^19.1.2",
+    "react-dom": "^19.1.2",
     "sass": "^1.86.3",
     "simple-parallax-js": "^6.1.1",
     "swiper": "^11.2.6"