Stacey Holleran
“Working weaponized” POC exploit now available…https://www.rapid7.com/blog/post/etr-react2shell-cve-2025-55182-critical-unauthenticated-rce-affecting-react-server-components/ #react
React2Shell, Critical unauthenticated RCE affecting React Server Components (CVE-2025-55182)

CVE-2025-55182 is a critical unauthenticated remote code execution vulnerability affecting React, a very popular library for building modern web applications.

Rapid7
Dec 4 at 10:05pmWeb