Lucene search
K

4919 matches found

GithubExploit
GithubExploit
added 2025/12/10 2:7 a.m.137 views

Exploit for Deserialization of Untrusted Data in Facebook React

Introduction A P- bypass version of the WAF scanner has been...

10CVSS7AI score0.99562EPSS
Exploits372
Trend Micro Simply Security
Trend Micro Simply Security
added 2025/12/10 12:0 a.m.11 views

CVE-2025-55182: React2Shell Analysis, Proof-of-Concept Chaos, and In-the-Wild Exploitation

CVE-2025-55182 is a CVSS 10.0 pre-authentication RCE affecting React Server Components. Amid the flood of fake proof-of-concept exploits, scanners, exploits, and widespread misconceptions, this technical analysis intends to cut through the noise...

10CVSS7.1AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 11:39 p.m.192 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 — demo This repository provides a demonstratio...

10CVSS8.2AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 11:30 p.m.148 views

Exploit for Deserialization of Untrusted Data in Facebook React

cve-2025-55182-poc Proof of Concept for CVE-2025-55182 "React...

10CVSS7.5AI score0.99562EPSS
Exploits372
Vulnrichment
Vulnrichment
added 2025/12/09 8:54 p.m.2 views

CVE-2025-67489 @vitejs/plugin-rsc Remote Code Execution through unsafe dynamic imports in RSC server function APIs on development server

@vitejs/plugin-rs provides React Server Components RSC support for Vite. Versions 0.5.5 and below are vulnerable to arbitrary remote code execution on the development server through unsafe dynamic imports in server function APIs loadServerAction, decodeReply, decodeAction when integrated into RSC...

9.8CVSS7.8AI score0.00694EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/09 8:54 p.m.15 views

CVE-2025-67489 @vitejs/plugin-rsc Remote Code Execution through unsafe dynamic imports in RSC server function APIs on development server

@vitejs/plugin-rs provides React Server Components RSC support for Vite. Versions 0.5.5 and below are vulnerable to arbitrary remote code execution on the development server through unsafe dynamic imports in server function APIs loadServerAction, decodeReply, decodeAction when integrated into RSC...

9.8CVSS0.00694EPSS
Exploits0References2
Metasploit
Metasploit
added 2025/12/09 6:55 p.m.665 views

Unauthenticated RCE in React Server Components (React2Shell)

A critical unauthenticated Remote Code Execution RCE vulnerability exists in React Server Components RSC Flight protocol. The vulnerability allows attackers to achieve prototype pollution during deserialization of RSC payloads by sending specially crafted multipart requests with "proto",...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2025/12/09 5:19 p.m.156 views

Exploit for Deserialization of Untrusted Data in Facebook React

fix-react2shell A CLI tool to detect and fix the critical C...

10CVSS8.1AI score0.99562EPSS
Exploits386
GithubExploit
GithubExploit
added 2025/12/09 5:7 p.m.152 views

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell /$$$$$$$...

10CVSS7.3AI score0.99562EPSS
Exploits386
GithubExploit
GithubExploit
added 2025/12/09 5:3 p.m.154 views

Exploit for Deserialization of Untrusted Data in Facebook React

Hunting for CVE-2025-55182 Using Open Source Intelligenc...

10CVSS6.8AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 2:5 p.m.174 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 React2Shell - Proof of Concept ⚠️ SECURIT...

10CVSS8.4AI score0.99562EPSS
Exploits372
CISA
CISA
added 2025/12/09 12:0 p.m.14 views

CISA Adds One Known Exploited Vulnerability to Catalog

Updated December 9, 2025: Check for signs of potential compromise on all internet accessible REACT instances after applying mitigations. For more information, see React Blog: Critical Security Vulnerability in React Server Componentslink is external. CISA has added one new vulnerability to its...

10CVSS7.8AI score0.99562EPSS
In wildExploits372References7
GithubExploit
GithubExploit
added 2025/12/09 11:46 a.m.127 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 React Server Components RCE Exploit USAGE: C...

10CVSS7.2AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 11:9 a.m.143 views

Exploit for Deserialization of Untrusted Data in Facebook React

c...

10CVSS7.1AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 11:9 a.m.159 views

Exploit for Deserialization of Untrusted Data in Facebook React

🛡️ RSC Sentinel Pro Advanced React Server Components R...

10CVSS6.8AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 11:7 a.m.160 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 Advanced Scanner !Pythonhttps://img.shields.i...

10CVSS8.4AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 10:49 a.m.135 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 Python Exploit Python 3 script that can be use...

10CVSS7.9AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 10:41 a.m.131 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 Advanced Scanner A full-featured exploitation ut...

10CVSS7.9AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 10:26 a.m.140 views

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell A scanner for detecting and exploiting Next.js...

10CVSS7.3AI score0.99562EPSS
Exploits386
GithubExploit
GithubExploit
added 2025/12/09 9:53 a.m.150 views

Exploit for Deserialization of Untrusted Data in Facebook React

react2shell-C...

10CVSS7AI score0.99562EPSS
Exploits372
Rows per page
Query Builder