Contribute to KingHacker353/CVE-2025-55184 development by creating an account on GitHub.

CVE-2025-55184 is a high-severity Denial of Service (DoS) vulnerability affecting React Server Components (RSC) implementations.

December 5, 2025 - Target Code + Exploit. Contribute to Tarekhshaikh13/CVE-2025-55184 development by creating an account on GitHub.

A safe, security validation script designed to detect CVE-2025-55184, a denial-of-service (DoS) vulnerability affecting React Server Components (RSC).

Batch upgrade all your Next.js apps to patched versions - fight back against CVE-2025-55183/55184/67779 - williavs/nextjs-security-update

- https://www.facebook.com/security/advisories/cve-2025-55184

Contribute to hans362/CVE-2025-55184-poc development by creating an account on GitHub.

December 11, 2025 - It was found that the fix addressing [CVE-2025-55184](https://github.com/advisories/GHSA-2m3v-v2m8-q956) in React Server Components was incomplete and did not fully prevent denial-of-service attack...

React2Shell (CVE-2025-55182) proof-of-concept (PoC) exploit demonstrating a CRITICAL remote code execution (RCE) vulnerability in modern web frameworks using React Server Components (RSC). - rsch-i...

react nextjs github-config waku cve-2025-55182 react2shell reactguard cve-2025-55183 cve-2025-55184 cve-2025-67779

December 11, 2025 - These vulnerabilities originate in the upstream React implementation (CVE-2025-55183, CVE-2025-55184). This advisory tracks the downstream impact on Next.js applications using the App Router.

POC for React2Shell (CVE-2025-55182). Contribute to kondukto-io/vulnerable-next-js-poc development by creating an account on GitHub.

December 11, 2025 - This is a potential security issue, you are being redirected to https://nvd.nist.gov · Official websites use .gov A .gov website belongs to an official government organization in the United States

December 11, 2025 - Common vulnerabilities and Exposures (CVE) · We're sorry but the CVE Website doesn't work properly without JavaScript enabled. Please enable it to continue

December 15, 2025 - These newly identified issues do not enable RCE, and the existing fixes successfully block that attack vector, according to the React team. However, they introduce new risks: two denial-of-service flaws (CVE-2025-55184 and CVE-2025-67779, with the CVSS score of 7.5) and a source code disclosure issue tracked as CVE-2025-55183, with a CVSS score of 5.3.

December 12, 2025 - CVE-2025-55184 is a denial-of-service (DoS) vulnerability in React Server Components (RSC), not a remote code execution flaw.

December 3, 2025 - CVE-2025-55182 · GHSA-fv66-9v8q-g76r · facebook/react · lachlan2k Finder · PiotrBorowski Analyst · nozo-moto Analyst · leogasparini Analyst · mtorp Analyst · mnahkies Analyst · mswilson Analyst · AsapHogFtw Analyst · Loading Checking history · There was an error while loading.

December 11, 2025 - Read how Akamai App & API Protector can help mitigate new CVEs, CVE-2025-55183 and CVE-2025-55184, in React/Next.js.

December 11, 2025 - Interesting timing to lecture about security. In the last 3 months alone, your stack shipped: • CVE-2025-66478 — RCE, CVSS 10.0. Exploited in the wild by nation-state actors. • CVE-2025-55184 — DoS, CVSS 7.5.

This repository contains a POC of CVE-2025-55182, a critical (CVSS score 10.0) pre-authentication remote code execution vulnerability affecting React Server Components, also known as React2Shell.