Lucene search
K

4917 matches found

GithubExploit
GithubExploit
added 2025/12/19 5:6 p.m.199 views

Exploit for Deserialization of Untrusted Data in Facebook React

RSC Detector - React Server Components Vulnerability Scanner...

10CVSS7.6AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/19 11:40 a.m.169 views

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell: CVE-2025-55182 – Comprehensive Vulnerability Scan...

10CVSS7.3AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/19 10:17 a.m.137 views

Exploit for Deserialization of Untrusted Data in Facebook React

Next.js React2Shell CVE-2025-55182 Exploit Tool A proof-of-...

10CVSS8.1AI score0.99562EPSS
Exploits386
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/19 8:21 a.m.6 views

Malicious code in react-enhanced-glow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d6a21a6e0e2094ca1f9327d83a0c38da77bd3b8f8ffbad317ef4530a7d14c45 The package react-enhanced-glow was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References1
Snyk
Snyk
added 2025/12/19 8:21 a.m.2 views

Malicious Package

Overview react-enhanced-glow is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
OSV
OSV
added 2025/12/19 8:21 a.m.3 views

MAL-2025-192614 Malicious code in react-enhanced-glow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d6a21a6e0e2094ca1f9327d83a0c38da77bd3b8f8ffbad317ef4530a7d14c45 The package react-enhanced-glow was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References1
EUVD
EUVD
added 2025/12/19 8:21 a.m.4 views

EUVD-2025-204477

Malicious code in react-enhanced-glow npm...

6.6AI score
Exploits0References1
GithubExploit
GithubExploit
added 2025/12/19 4:1 a.m.174 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 POC This repository contains a proof of conce...

10CVSS7AI score0.99562EPSS
Exploits372
Tenable Nessus
Tenable Nessus
added 2025/12/19 12:0 a.m.7 views

Next.js Framework React Server Components DoS (CVE-2025-55184)

The Next.js Framework on the remote host is affected by a denial of service vulnerability: - A pre-authentication denial of service vulnerability exists in React Server Components versions 19.0.0, 19.0.1 19.1.0, 19.1.1, 19.1.2, 19.2.0 and 19.2.1, including the following packages:...

7.5CVSS6.4AI score0.65592EPSS
Exploits10References2
GithubExploit
GithubExploit
added 2025/12/18 6:32 p.m.137 views

Exploit for Deserialization of Untrusted Data in Facebook React

No d...

10CVSS7AI score0.99562EPSS
Exploits372
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/18 4:41 p.m.10 views

Security Bulletin: MANTA Automated Data Lineage for IBM Cloud Pak for Data is vulnerable to Critical Security Vulnerability in React Server Components CVE-2025-55182

Summary MANTA Automated Data Lineage for IBM Cloud Pak for Data is affected by React Server Components CVE-2025-55182. Vulnerability Details CVEID:CVE-2025-55182 DESCRIPTION: A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1...

10CVSS7.9AI score0.99562EPSS
Exploits372Affected Software1
GithubExploit
GithubExploit
added 2025/12/18 8:19 a.m.149 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 Toolkit & Lab Educational Only Lightweight G...

10CVSS7.9AI score0.99562EPSS
Exploits372
GithubExploit
GithubExploit
added 2025/12/18 2:49 a.m.145 views

Exploit for Deserialization of Untrusted Data in Facebook React

react2shell-scanner-bypasswaf A command-line tool for detecti...

10CVSS7.4AI score0.99562EPSS
Exploits386
GithubExploit
GithubExploit
added 2025/12/17 12:45 a.m.219 views

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell PoC This repository provides a minimal intentiona...

10CVSS8AI score0.99562EPSS
Exploits393
Snyk
Snyk
added 2025/12/16 10:32 p.m.2 views

Malicious Package

Overview twilio-voice-react-native-reference-server is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that...

9.8CVSS5.9AI score
Exploits0References2
Snyk
Snyk
added 2025/12/16 10:32 p.m.2 views

Malicious Package

Overview semi-animation-react is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
Snyk
Snyk
added 2025/12/16 10:32 p.m.2 views

Malicious Package

Overview react-vis-website is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
Snyk
Snyk
added 2025/12/16 10:32 p.m.4 views

Malicious Package

Overview react-redux-up is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/16 10:22 p.m.10 views

Security Bulletin: React Server Components RCE (CVE-2025-55182) and related advisories

Summary React Server Components RCE vulnerability. Carbon React and related Carbon React based libraries are not related to this CVE. However, many product teams may depend on the affected libraries via frameworks or plugins. We strongly encourage all teams to verify and upgrade any affected...

10CVSS8.1AI score0.99562EPSS
Exploits372Affected Software1
Snyk
Snyk
added 2025/12/16 6:44 p.m.2 views

Directory Traversal

Overview @vitejs/plugin-rsc is a React Server Components RSC support for Vite. Affected versions of this package are vulnerable to Directory Traversal via the /viterscfindSourceMapURL endpoint when processing HTTP requests containing a file:// URL in the filename query parameter. An attacker can...

8.7CVSS7.5AI score0.00552EPSS
Exploits0References2
Rows per page
Query Builder