Lucene search
K

4919 matches found

Hacker One
Hacker One
added 2025/12/09 9:43 a.m.19 views

IBM: [RCE] Remote Code Execution via React Server Components Vulnerability CVE-2025-55182

Vulnerability description not provided...

10CVSS7.6AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 9:39 a.m.153 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 Scanner Simple command-line tool for detecting...

10CVSS7.4AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 9:17 a.m.182 views

Exploit for Deserialization of Untrusted Data in Facebook React

🔥 RSC RCE Exploit Toolkit !Versionhttps://img.shields.io...

10CVSS8.7AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 7:55 a.m.187 views

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell !Languagehttps://img.shields.io/badge/Language...

10CVSS8.6AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 6:46 a.m.230 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 Indicator Scanner This repository provides a...

10CVSS7.6AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 6:41 a.m.154 views

Exploit for Deserialization of Untrusted Data in Facebook React

⚡ CVE-2025-55182 – Auto Exploit Toolkit Precision Engine...

10CVSS7.2AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 6:41 a.m.162 views

Exploit for Deserialization of Untrusted Data in Facebook React

⚡ CVE-2025-55182 – Advanced Auto Exploit Toolkit Precisi...

10CVSS7.2AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 4:25 a.m.142 views

Exploit for Deserialization of Untrusted Data in Facebook React

react2shell-scanner-rust Detect CVE-2025-55182 & CVE-2025-664...

10CVSS6.9AI score0.99562EPSS
Exploits386
GithubExploit
GithubExploit
added 2025/12/09 3:54 a.m.127 views

Exploit for Deserialization of Untrusted Data in Facebook React

PoC-react2...

10CVSS7.1AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/09 3:48 a.m.166 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-5582 RCE A self-use checking tool for detecting the...

10CVSS7.2AI score0.99562EPSS
Exploits387
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.4 views

Vite Plugin React 代码注入漏洞

Vite Plugin React is an open source plugin for Vite. A code injection vulnerability exists in Vite Plugin React 0.5.5 and earlier versions, which stems from an insecure dynamic import in the Server Functions API that could lead to remote code execution...

9.8CVSS7.9AI score0.00694EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.6 views

PT-2025-49862

🧵 6/15: The Exploit simplified: The vulnerability CVE-2024-555182 lies in the deserialization process. React wasn't verifying if a requested key actually existed on the object during this process. This allows an attacker to sneak in a request for the constructor of a function...

6.9AI score
Exploits0References1
Packet Storm
Packet Storm
added 2025/12/09 12:0 a.m.178 views

📄 React / Next.js Unauthenticated Remote Code Execution

A critical unauthenticated remote code execution vulnerability exists in React Server Components RSC Flight protocol. The vulnerability allows attackers to achieve prototype pollution during deserialization of RSC payloads by sending specially crafted multipart requests with proto, constructor, o...

10CVSS8.4AI score0.99562EPSS
Exploits386
Packet Storm
Packet Storm
added 2025/12/09 12:0 a.m.174 views

📄 React 19.2.0 PHP Scanner / Remote Code Execution

This project delivers a PHP-based vulnerability scanner and remote code execution exploit for CVE‑2025‑55182 affecting React Server Components. It leverages RSC serialization weaknesses to execute arbitrary commands and validate successful exploitation...

10CVSS8.7AI score0.99562EPSS
Exploits372
Vaadin
Vaadin
added 2025/12/09 12:0 a.m.24 views

React 19 Server Components Critical Vulnerability (CVE-2025-55182, CVE-2025-55183, CVE-2025-55184)

On December 3, 2025, the React team disclosed a critical remote code execution vulnerability CVE-2025-55182, CVSS 10.0 affecting React 19 Server Components. This vulnerability has raised concerns among Vaadin users and security scanning tools. Update: On December 11 and 12, 2025, two new...

10CVSS7.6AI score0.99562EPSS
Exploits382References1
Snyk
Snyk
added 2025/12/08 10:16 p.m.3 views

Arbitrary Code Injection

Overview @vitejs/plugin-rsc is a React Server Components RSC support for Vite. Affected versions of this package are vulnerable to Arbitrary Code Injection via unsafe dynamic imports in the loadServerAction, decodeReply, and decodeAction server APIs. An attacker can execute arbitrary JavaScript...

9.8CVSS7.7AI score0.00694EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2025/12/08 9:56 p.m.204 views

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell Vulnerability Scanner A safe, non-invasive scanne...

10CVSS8.7AI score0.99562EPSS
Exploits386
GithubExploit
GithubExploit
added 2025/12/08 9:55 p.m.149 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182: Exploitation Artifacts An export of a small s...

10CVSS6.9AI score0.99562EPSS
Exploits386
vulnersOsv
vulnersOsv
added 2025/12/08 7:41 p.m.7 views

@levo-so/react (>=0.1.15 <=0.1.43), @levo-so/react-collection (>=0.0.1 <=0.1.86) +2 more potentially affected by CVE-2025-65849 via altcha (>=1.0.7 <=2.0.2)

altcha NPM version =1.0.7, =0.1.15, =0.0.1, =0.1.91, =0.0.23, =0.0.34 Source cves: CVE-2025-65849 Source advisory: SNYK:JS-ALTCHA-14236435...

9.1CVSS5.4AI score0.00189EPSS
Exploits0
GithubExploit
GithubExploit
added 2025/12/08 6:25 p.m.185 views

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell Detector A Chrome extension for detecting React2S...

10CVSS7AI score0.99562EPSS
Exploits386
Rows per page
Query Builder