CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

TL;DR:A newly disclosed denial-of-service vulnerability, CVE-2026-23870, impacts React Server Components and dependent frameworks, including Next.js App Router deployments. The flaw enables unauthenticated attackers to send specially crafted HTTP requests that trigger excessive CPU consumption...

7.5CVSS5.9AI score0.00338EPSS

Exploits1

GithubExploit•added 2026/04/22 12:58 p.m.•67 views

Exploit for Deserialization of Untrusted Data in Facebook React

flight-risk flight risk /flaɪt rɪsk/ — React's Flight...

10CVSS7.9AI score0.84541EPSS

Exploits362

GithubExploit•added 2026/04/11 5:0 a.m.•236 views

Exploit for CVE-2026-23869

⚡ CVE-2026-23869 — React2DoS Unauthenticated Remote Denial-o...

7.5CVSS5.9AI score0.00841EPSS

Exploits3

GithubExploit•added 2026/04/11 5:0 a.m.•222 views

Exploit for CVE-2026-23869

⚡ CVE-2026-23869 — React2DoS Unauthenticated Remote Denial-o...

7.5CVSS5.9AI score0.00841EPSS

Exploits3

Imperva Blog•added 2026/04/09 2:54 p.m.•10 views

React2DoS (CVE-2026-23869): When the Flight Protocol Crashes at Takeoff

Executive Summary In this article, we disclose a new high severity unauthenticated remote denial‑of‑service vulnerability we identified and reported in React Server Components that we’ve dubbed “React2DoS”. In this blog, we’ll analyze its impact and place it in the broader context of recently fou...

7.5CVSS7.5AI score0.0198EPSS

Exploits3

GithubExploit•added 2026/02/10 12:19 a.m.•122 views

Exploit for Deserialization of Untrusted Data in Facebook React

Affected Software: React Server Components versions 19.0.0, 1...

10CVSS6.5AI score0.84541EPSS

Exploits362

GithubExploit•added 2026/01/14 10:25 a.m.•150 views

RCE-Exploit-Tools

RCE Exploit Research Tools Project Overview This repository cont...

7.8AI score

Exploits0

GithubExploit•added 2026/01/10 5:16 p.m.•175 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 — React2Shell: Full Analysis, PoC Overview, and...

10CVSS8.4AI score0.84541EPSS

Exploits362

GithubExploit•added 2026/01/10 3:58 a.m.•149 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 React2Shell Vulnerability Analysis Lab This...

10CVSS8.1AI score0.84541EPSS

Exploits362

GithubExploit•added 2026/01/04 12:5 p.m.•128 views

Exploit for Deserialization of Untrusted Data in Facebook React

🎯 React2Shell CVE-2025-55182 — From React Server Components...

10CVSS8AI score0.84541EPSS

Exploits376

GithubExploit•added 2025/12/30 11:44 a.m.•168 views

Exploit for Deserialization of Untrusted Data in Facebook React

Understanding CVE-2025-55182 React2Shell: A Deep Dive into...

10CVSS8.7AI score0.84541EPSS

Exploits376

GithubExploit•added 2025/12/19 10:17 a.m.•115 views

Exploit for Deserialization of Untrusted Data in Facebook React

Next.js React2Shell CVE-2025-55182 Exploit Tool A proof-of-...

10CVSS8.1AI score0.84541EPSS

Exploits376

GithubExploit•added 2025/12/16 5:32 p.m.•139 views

Exploit for Deserialization of Untrusted Data in Facebook React

Next.js React2Shell CVE-2025-55182 Expl0it A proof-of-conce...

10CVSS8.1AI score0.84541EPSS

Exploits376

Microsoft Secure•added 2025/12/15 7:35 p.m.•10 views

Defending against the CVE-2025-55182 (React2Shell) vulnerability in React Server Components

CVE-2025-55182 also referred to as React2Shell and includes CVE-2025-66478, which was merged into it is a critical pre-authentication remote code execution RCE vulnerability affecting React Server Components, Next.js, and related frameworks. With a CVSS score of 10.0, this vulnerability could all...

10CVSS8.9AI score0.84541EPSS

Exploits376

GithubExploit•added 2025/12/15 10:32 a.m.•161 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 - React Server Components RCE NOTE: Written b...

10CVSS7.7AI score0.84541EPSS

Exploits376

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by