477 matches found
EUVD-2026-3518
Malicious code in react-server-dom-unbundled npm...
Malicious Package
Overview react-server-dom-unbundled is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
MAL-2026-356 Malicious code in react-server-dom-unbundled (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a00ece23d0316d703248d00b48a8a29b2ed829ae8e1bce8f1bfd6a404820b21 The package react-server-dom-unbundled was found to contain malicious code. Source: ghsa-malware...
Cross-site Request Forgery
React Router is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability is due to missing CSRF protections on document POST requests to UI routes, where server-side route action handlers or React Server Actions accept authenticated POST requests without origin validation, allowing...
Exploit for Deserialization of Untrusted Data in Facebook React
CVE-2025-55182 React2Shell Vulnerability Analysis Lab This...
CVE-2026-22030
React Router is a router for React. In @remix-run/server-runtime version prior to 2.17.3. and react-router 7.0.0 through 7.11.0, React Router or Remix v2 is vulnerable to CSRF attacks on document POST requests to UI routes when using server-side route action handlers in Framework Mode, or when...
GHSA-H5CW-625J-3RXH React Router has CSRF issue in Action/Server Action Request Processing
React Router or Remix v2 is vulnerable to CSRF attacks on document POST requests to UI routes when using server-side route action handlers in Framework Mode, or when using React Server Actions in the new unstable RSC modes. !NOTE This does not impact applications that use Declarative Mode or Data...
Exploit for Deserialization of Untrusted Data in Facebook React
CVE-2025-55182 React2Shell - Proof of Concept ⚠️ SECURIT...
Exploit for Deserialization of Untrusted Data in Facebook React
CVE-202...
Exploit for Deserialization of Untrusted Data in Facebook React
🔍 Next.js Security Testing Tool Professiona...
Exploit for Deserialization of Untrusted Data in Facebook React
🔍 Next.js Security Testing Tool Professiona...
Exploit for Deserialization of Untrusted Data in Facebook React
🎯 React2Shell CVE-2025-55182 — From React Server Components...
Exploit for Deserialization of Untrusted Data in Facebook React
CVE-2025-55182 React2Shell - Vulnerable Lab !CVE-2025-5518...
Exploit for Deserialization of Untrusted Data in Facebook React
🔍 Next.js Security Testing Tool Professiona...
Exploit for Deserialization of Untrusted Data in Facebook React
CVE-2025-55182 - Tool React2Shell React2Shell Ultimate Sca...
Exploit for Deserialization of Untrusted Data in Facebook React
Affected Versions |Component|Recommended Installation Version...
Exploit for Deserialization of Untrusted Data in Facebook React
CyberSec Blog CTF - React2Shell PoC Ce dépôt fournit un envir...
Malicious Package
Overview react-server-dom-fb is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Exploit for Deserialization of Untrusted Data in Facebook React
🔍 React2Shell Dork Scanner ---...
Exploit for Deserialization of Untrusted Data in Facebook React
Understanding CVE-2025-55182 React2Shell: A Deep Dive into...