Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-55182

CVSS 10.0 · Critical KEV · Ransomware EPSS 82.01% · P99
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-55182

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Meta React Server Components 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Meta React Server Components是美国Meta公司的一系列组件。 Meta React Server Components 19.0.0版本、19.1.0版本、19.1.1版本和19.2.0版本存在安全漏洞,该漏洞源于HTTP请求反序列化不当,可能导致远程代码执行。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
Metareact-server-dom-webpack 19.0.0 ~ 19.0.0 -
Metareact-server-dom-turbopack 19.0.0 ~ 19.0.0 -
Metareact-server-dom-parcel 19.0.0 ~ 19.0.0 -

II. Public POCs for CVE-2025-55182

#POC DescriptionSource LinkShenlong Link
1React Server Components 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack contain a remote code execution caused by unsafe deserialization of payloads from HTTP requests to Server Function endpoints, letting unauthenticated attackers execute arbitrary code remotely, exploit requires no authentication. https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2025/CVE-2025-55182.yamlPOC Details
2Script to quick check CVE-2025-55182 (React) and CVE-2025-66478 (Next.js) - Critical unauthenticated RCE vulnerabilities in the React Server Components (RSC) “Flight” protocol.https://github.com/BankkRoll/Quickcheck-CVE-2025-55182-React-and-CVE-2025-66478-Next.jsPOC Details
3CVE-2025-55182 POChttps://github.com/ejpir/CVE-2025-55182-researchPOC Details
4CVE-2025-55182 - React Server Components RCE Exploit & Scanner Supports external servers and CLI interfacehttps://github.com/sickwell/CVE-2025-55182POC Details
5A non-intrusive surface scanner for CVE-2025-55182 (React Server Components RCE). Detects exposed RSC endpoints in React 19 and Next.js applicationshttps://github.com/fatguru/CVE-2025-55182-scannerPOC Details
6CVE-2025-55182https://github.com/Ashwesker/Blackash-CVE-2025-55182POC Details
7CVE-2025-55182 - React Server Components RCE Exploit & Scanner Supports external servers and CLI interfacehttps://github.com/atastycookie/CVE-2025-55182POC Details
8Nonehttps://github.com/santihabib/CVE-2025-55182-analysisPOC Details
9Nonehttps://github.com/xkillbit/cve-2025-55182-scannerPOC Details
10Testing the React Server Components RCE (CVE-2025-55182)https://github.com/rpjboyarski/java4scriptPOC Details
11React2Shell Proof of Concepthttps://github.com/whiteov3rflow/CVE-2025-55182-pocPOC Details
12This POC demonstrates CVE-2025-55182 using actual `react-server-dom-webpack@19.0.0` vulnerable code.https://github.com/Pa2sw0rd/exploit-CVE-2025-55182-pocPOC Details
13CVE-2025-55182https://github.com/kk12-30/CVE-2025-55182POC Details
14For CVE-2025-55182 and CVE-2025-66478 Security Responsehttps://github.com/heiheishushu/rsc_detect_CVE-2025-55182POC Details
15CVE-2025-55182 漏洞利用GUI,PoC / Exploit for CVE-2025-55182 & CVE-2025-66478https://github.com/songsanggggg/CVE-2025-55182POC Details
16检测针对 CVE-2025-55182(React 服务器组件远程代码执行漏洞)的扫描器https://github.com/M0onPu15e/next.js-scannerPOC Details
17a critical Remote Code Execution (RCE) vulnerability in React Server Components (RSC). It also includes a realistic "Lab Environment" to safely test and understand the vulnerability.https://github.com/ThemeHackers/CVE-2025-55182POC Details
18a realistic POC demonstrating the missing `hasOwnProperty` check in react-server-dom-webpack@19.0.0https://github.com/joshterrill/CVE-2025-55182-realistic-pocPOC Details
19A Comprehensive CVE-2025-55182 Detection and Security Assessment Toolhttps://github.com/mingyisecurity-lab/CVE-2025-55182-TOOLSPOC Details
20High-performance exploitation engine for CVE-2025-55182 (React Server Components RCE)https://github.com/joaonevess/rust-flightPOC Details
21Security scanner for CVE-2025-55182 - Critical RCE vulnerability in React Server Components. Scan npm/pnpm/yarn lockfiles, Docker images, SBOMs, and live URLs. Auto-fix, SARIF output, GitHub Actions, Vercel integration, and runtime protection middleware.https://github.com/gensecaihq/react2shell-scannerPOC Details
22Nonehttps://github.com/sudo-Yangziran/CVE-2025-55182POCPOC Details
23一款针对 CVE-2025-55182 的独立安全评估工具,基于 Go 开发,提供图形化界面(GUI),用于快速完成漏洞检测与验证。https://github.com/Rsatan/CVE-2025-55182-ToolsPOC Details
24High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)https://github.com/assetnote/react2shell-scannerPOC Details
25RCE Auto exploit for CVE-2025-55182https://github.com/jf0x3a/CVE-2025-55182-exploitPOC Details
26React/Next.js RCE CVE-2025-55182 checkerhttps://github.com/aspen-labs/CVE-2025-55182-checkerPOC Details
27Nonehttps://github.com/dissy123/cve-2025-55182POC Details
28Pre-auth RCE in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0.https://github.com/dwisiswant0/CVE-2025-55182POC Details
29See if your endpoint could be vulnerable.https://github.com/Chelsea486MHz/CVE-2025-55182-testPOC Details
30Nonehttps://github.com/oways/React2shell-CVE-2025-55182-checkerPOC Details
31Explanation and full RCE PoC for CVE-2025-55182https://github.com/msanft/CVE-2025-55182POC Details
32CVE-2025-55182 Fix for Vibe Codershttps://github.com/ivaavimusic/React19-fix-vibecodersPOC Details
33a critical Remote Code Execution (RCE) vulnerability in React Server Components (RSC). It also includes a realistic "Lab Environment" to safely test and understand the vulnerability.https://github.com/carlosaruy/CVE-2025-55182POC Details
34Scanner for CVE-2025-55182 (React) and CVE-2025-66478 (Next.js) - Track and remediate a critical React Server Components (RSC) / Flight protocol vulnerability campaign impacting react-server-dom-webpack, react-server-dom-parcel, react-server-dom-turbopack, and RSC-enabled frameworks like Next.js. https://github.com/Security-Phoenix-demo/freight-night-rce-react-next-CVE-2025-55182-CVE-2025-66478POC Details
35some notes && (somewhat?) poc-adjacent stuff for CVE-2025-55182https://github.com/c0rydoras/CVE-2025-55182POC Details
36React2Shell Scanner (CVE-2025-55182 & CVE-2025-66478)https://github.com/CymulateResearch/React2Shell-ScannerPOC Details
37Nonehttps://github.com/0xPThree/cve-2025-55182POC Details
38Vulnerable Docker environment for reproducing CVE-2025-55182.https://github.com/SoICT-BKSEC/CVE-2025-55182-docker-labPOC Details
39Actual CVE-2025-55182 detection and exploit. No bullshit LLMs.https://github.com/acheong08/CVE-2025-55182-pocPOC Details
40Deliberately vulnerable banking app for CVE-2025-55182 (React) and CVE-2025-66478 (Next.js) to learn, detect, and safely exercise React2Shell. Runs unpatched React 19.0.0 and Next.js 15.0.3.https://github.com/jctommasi/react2shellVulnAppPOC Details
41Nuclei template for detecting react2shell (CVE-2025-55182 & CVE-2025-66478)https://github.com/shamo0/react2shell-PoCPOC Details
42Poc for CVE-2025-55182 (remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages)https://github.com/EynaExp/CVE-2025-55182-POCPOC Details
43Unified Security Research Toolhttps://github.com/im-hanzou/CVE-2025-55182-POC-SCANNERPOC Details
44Nonehttps://github.com/MrR0b0t19/CVE-2025-55182-shellinteractivePOC Details
45Vulnerable REACT app in docker container and poc code - for demoshttps://github.com/ps-interactive/cve-2025-55182POC Details
46Burp Suite extension to detect the Next.js / React Server Components (RSC) Remote Code Execution vulnerability (CVE-2025-55182 & CVE-2025-66478).https://github.com/tobiasGuta/Next.js-RSC-RCE-Scanner-Burp-Suite-ExtensionPOC Details
47Functional Python POC to test if servers are vulnerable to CVE-2025-55182https://github.com/aquinn-r7/CVE-2025-55182-VulnCheckPOCPOC Details
48PoC CVE-2025-55182https://github.com/MedusaSH/POC-CVE-2025-55182POC Details
49Nonehttps://github.com/marginaldeer/CVE-2025-55182_scannerPOC Details
50Community tool to detect and remediate CVE-2025-55182 (React2Shell) - Critical RCE vulnerability in React Server Componentshttps://github.com/nxgn-kd01/cve-2025-55182-scannerPOC Details
51Nonehttps://github.com/clevernyyyy/CVE-2025-55182-DockerizedPOC Details
52A proof of concept exploit script for CVE-2025-55182https://github.com/Cillian-Collins/CVE-2025-55182POC Details
53Security scanner to detect CVE-2025-55182 & CVE-2025-66478 vulnerabilities in React Server Components (RSC) projectshttps://github.com/ZihxS/check-react-rce-cve-2025-55182POC Details
54https://github.com/vulhub/vulhub/blob/master/react/CVE-2025-55182/README.mdPOC Details
55Nonehttps://github.com/ducducuc111/CVE-2025-55182-pocPOC Details
56Scanner for CVE-2025-55182 (React) and CVE-2025-66478 (Next.js) - Track and remediate a critical React Server Components (RSC) / Flight protocol vulnerability campaign impacting react-server-dom-webpack, react-server-dom-parcel, react-server-dom-turbopack, and RSC-enabled frameworks like Next.js. https://github.com/Security-Phoenix-demo/react2shell-scanner-rce-react-next-CVE-2025-55182-CVE-2025-66478POC Details
57Community tool to detect and remediate CVE-2025-55182 (React2Shell) - Critical RCE vulnerability in React Server Componentshttps://github.com/nxgn-kd01/react2shell-scannerPOC Details
58Nonehttps://github.com/tlfyyds/cve-2025-55182-getshellPOC Details
59Nonehttps://github.com/ZemarKhos/CVE-2025-55182-Exploit-PoC-ScannerPOC Details
60Nonehttps://github.com/sherlocksecurity/CVE-2025-55182-Exploit-scannerPOC Details
61This is a POC script for CVE-2025-55182 (React SSR RCE)https://github.com/Darker-Ink/react-ssr-vulnerabilityPOC Details
62POC for CVE-2025-55182https://github.com/emadshanab/POC-for-CVE-2025-55182POC Details
63Nonehttps://github.com/topstar88/CVE-2025-55182POC Details
64Nonehttps://github.com/selectarget/CVE-2025-55182-ExploitPOC Details
65Nonehttps://github.com/onlylovetx/CVE-2025-55182-CVE-2025-66478-Exploit-GUIPOC Details
66Exploit for CVE-2025-55182 & CVE-2025-66478https://github.com/pyroxenites/Nextjs_RCE_Exploit_ToolPOC Details
67Nonehttps://github.com/TH-SecForge/CVE-2025-55182POC Details
68Next.js React Server Components RCE exploit for CVE-2025-55182https://github.com/Chocapikk/CVE-2025-55182POC Details
69Supports RSC fingerprinting and exploitation of the React component vulnerability CVE-2025-55182.https://github.com/mrknow001/RSC_DetectorPOC Details
70CVE-2025-55182 React Server Components Remote Code Execution Exploit Toolhttps://github.com/Spritualkb/CVE-2025-55182-expPOC Details
71Nonehttps://github.com/younesZdDz/CVE-2025-55182POC Details
72Original Proof-of-Concept's for React2Shell CVE-2025-55182https://github.com/lachlan2k/React2Shell-CVE-2025-55182-original-pocPOC Details
73Nonehttps://github.com/hualy13/CVE-2025-55182POC Details
74Interactive shell (HTTP hijack + POST + AES-256-CBC/BASE64)https://github.com/RuoJi6/CVE-2025-55182-RCE-shellPOC Details
75A bash scanner for detecting CVE-2025-55182 vulnerability in Next.js applicationshttps://github.com/Saturate/CVE-2025-55182-ScannerPOC Details
76Nonehttps://github.com/hoosin/CVE-2025-55182POC Details
77基于 CVE-2025-55182 漏洞检测 burpsuite 被动扫描插件https://github.com/Pizz33/CVE-2025-55182-burpscannerPOC Details
78lab_demo CVE-2025-55182https://github.com/Sotatek-KhaiNguyen3/CVE-2025-55182POC Details
79Real-world attack analysis of CVE-2025-55182 (React2Shell) - React Server Components RCE vulnerabilityhttps://github.com/ngvcanh/CVE-2025-55182-Attack-AnalysisPOC Details
80Working proof of concept for NextJS RCE to establish a reverse shell. [React2Shell]https://github.com/aliclub0x00/CVE-2025-55182-POC-NEXTJSPOC Details
81"One crafted HTTP request can compromise your entire server." — React Security Team, Dec 2025https://github.com/logesh-GIT001/CVE-2025-55182POC Details
82An analysis of CVE-2025-55182 and CVE-2025-66478 -- the vulnerabilities behind React2Shell. Tools, technical information, etchttps://github.com/freeqaz/react2shellPOC Details
83CVE-2025-55182https://github.com/m3m0ryc0rrupt/CVE-2025-55182-PoCPOC Details
84A containerized testing environment for CVE-2025-55182, a critical (10.0 CVSS) Remote Code Execution vulnerability in React Server Components.https://github.com/ABCFabian/React2Shell-CVE-2025-55182-Testing-EnvironmentPOC Details
85Nonehttps://github.com/nanwinata/CVE-2025-55182-ScannerPOC Details
86Docker poc lab for CVE-2025-55182 detection and exploitationhttps://github.com/l4rm4nd/CVE-2025-55182POC Details
87浅谈React Server Components RCE 漏洞分析https://github.com/Airis101/CVE-2025-55182-analysisPOC Details
88React Server Components 远程代码执行漏洞(CVE-2025-55182)https://github.com/GelukCrab/React-Server-Components-RCEPOC Details
89Interactive RCE Web Shell (CVE-2025-55182) BY Golden-Securityhttps://github.com/Golden-Secure/CVE-2025-55182POC Details
90研究CVE-2025-55182全版本利用漏洞https://github.com/XiaomingX/CVE-2025-55182-pocPOC Details
91Nonehttps://github.com/alexandre-briongos-wavestone/react-cve-2025-55182-labPOC Details
92This repository documents research into deserialization behavior within Next.js React Server Components (RSC) using the Flight protocol. It focuses on how malformed multipart bodies combined with Server Action request handling can lead to prototype traversal and execution primitives on certain builds.https://github.com/Rat5ak/CVE-2025-55182-React2Shell-RCE-POCPOC Details
93React2Shell | CVE-2025-55182 - React Server Components RCEhttps://github.com/RajChowdhury240/React2Shell-CVE-2025-55182POC Details
94PoC: CVE-2025-55182 (React) and CVE-2025-66478 (Next.js)https://github.com/nehkark/CVE-2025-55182POC Details
95Nonehttps://github.com/prestonhashworth/cve-2025-55182POC Details
96POC for CVE-2025-55182 React2Shellhttps://github.com/nomorebreach/POC-CVE-2025-55182POC Details
97Host-based detection rules for the RCE vulnerability in the React JavaScript framework.https://github.com/nerium-security/CVE-2025-55182POC Details
98CVE-2025-55182复现环境及RCE回显pochttps://github.com/zzhorc/CVE-2025-55182POC Details
99nmap nse for detecting React2Shell (CVE-2025-55182)https://github.com/Atlantis02-sec/Vulnerability-assessmentPOC Details
100Proof-of-Concept RCE pour CVE‑2025‑55182 exploitant le protocole React Flight sur Next.js App Router.https://github.com/rl0x01/CVE-2025-55182_PoCPOC Details
101React2Shell (CVE-2025-55182) – An intentionally vulnerable Next.js application created for educational and research purposes.https://github.com/subzer0x0/React2ShellPOC Details
102Security scanner for CVE-2025-55182 - Critical RCE vulnerability in React Server Componentshttps://github.com/f0xyx/CVE-2025-55182-ScannerPOC Details
103使用burp自动检测CVE-2025-55182 Next.js RCE 漏洞https://github.com/Cr4at0r/Next.js-RCE-Scanner-BurpSuite-Extension-POC Details
104Proof of Concept for React2Shell vulnerabilityhttps://github.com/ceortiz33/CVE-2025-55182POC Details
105PoC for React2Shell (CVE-2025-55182)https://github.com/sh1ro8/react2shellPOC Details
106Show case CVE-2025-55182 POC in Typrescript/Javascripthttps://github.com/zessu/CVE-2025-55182-TypescriptPOC Details
107A web-based vulnerability scanner for CVE-2025-55182, a critical Remote Code Execution (RCE) vulnerability in React Server Components.https://github.com/mxm0z/r2sPOC Details
108CVE-2025-55182 Interactive PoC - React Server Components RCE - Educational Security Researchhttps://github.com/NathanJ60/react2shell-interactivePOC Details
109Nonehttps://github.com/GarethMSheldon/React2Shell-CVE-2025-55182-DetectorPOC Details
110CVE-2025-55182 React2Shell PoC labhttps://github.com/alsaut1/react2shell-labPOC Details
111React2Shell vulnerability (CVE-2025-55182 / CVE-2025-66478)https://github.com/pax-k/react2shell-CVE-2025-55182-full-rce-scriptPOC Details
112This repository contains a proof-of-concept demonstration of CVE-2025-55182, a critical (CVSS score 10.0) pre-authentication remote code execution vulnerability affecting React Server Components, also known as React2Shell.https://github.com/kOaDT/poc-cve-2025-55182POC Details
113Nonehttps://github.com/StealthMoud/CVE-2025-55182-ScannerPOC Details
114CVE-2025-55182 Exploithttps://github.com/yanoshercohen/CVE-2025-55182POC Details
115Nonehttps://github.com/klassiker/CVE-2025-55182POC Details
116Lightweight scanner and Nuclei templates for identifying React and Next.js deserialization RCEs (CVE-2025-55182 / CVE-2025-66478).https://github.com/grp-ops/react2shellPOC Details
117PoC for React2Shell (CVE-2025-55182)https://github.com/xkey8/react2shellPOC Details
118Nonehttps://github.com/kindone09/CVE-2025-55182POC Details
119this repo have CVE-2025-55182 full exploit with RCEhttps://github.com/mohit121312/CVE-2025-55182_full_exploitPOC Details
120React2Shell (CVE-2025-55182) Exploithttps://github.com/yanoshercohen/React2Shell_CVE-2025-55182POC Details
121RSC/Next.js RCE Vulnerability Detector & PoC Chrome Extension – CVE-2025-55182 & CVE-2025-66478https://github.com/emredavut/CVE-2025-55182POC Details
122Nonehttps://github.com/fankh/cve-2025-55182-test-lab-windowsPOC Details
123Fast scanner for detecting and confirming Next.js RCE vulnerabilities (CVE-2025-55182 & CVE-2025-66478).https://github.com/cypholab/evilactPOC Details
124Nonehttps://github.com/shren207/CVE-2025-55182POC Details
125Mass Hunting & Exploitation PoC for CVE-2025-55182 & CVE-2025-66478https://github.com/sumanrox/rschunterPOC Details
126CVE-2025-55182 & CVE-2025-66478 proof of conceptshttps://github.com/ayoub-intigriti/react2shell-cvePOC Details
127Nonehttps://github.com/zorejt/Rust_CVE-2025-55182POC Details
128A critical-severity vulnerability in React Server Components (CVE-2025-55182) affects React 19 and frameworks that use it, including Next.js (CVE-2025-66478)https://github.com/StillSoul/CVE-2025-55182POC Details
129Nonehttps://github.com/MaxK9999/CVE-2025-55182POC Details
130CVE-2025-55182 pochttps://github.com/Archerkong/CVE-2025-55182POC Details
131chrome extension to detect next.js sites vulnerable to CVE-2025-55182 (react2shell)https://github.com/philparzer/nextjs-react2shell-detectPOC Details
132Nonehttps://github.com/Kryptopacy/Next.js-RCE-Patcher--CVE-2025-55182-POC Details
133Meowhttps://github.com/yunaranyancat/CVE-2025-55182-NSEPOC Details
134This is a POC for testing your projects that are vulnerable to CVE-2025-55182 with a terminal and ability to scan a listhttps://github.com/MrSol0/CVE-2025-55182-TerminalPOC Details
135A test server for demonstrating and testing React2Shell (CVE-2025-55182) vulnerabilityhttps://github.com/fullhunt/react2shell-test-serverPOC Details
136Nonehttps://github.com/zack0x01/vuln-app-CVE-2025-55182POC Details
137Nonehttps://github.com/zack0x01/CVE-2025-55182-advanced-scanner-POC Details
138AWS Organization-wide detection toolkit for CVE-2025-55182 & CVE-2025-66478 (React Server Components / Next.js RCE vulnerabilities)https://github.com/rocklambros/React2Shell_HunterPOC Details
139CVE-2025-55182 & CVE-2025-66478 Detection Tool for Next.js RSC RCEhttps://github.com/alessiodos/react2shell-scannerPOC Details
140Patches CVE-2025-55182 in your repositorieshttps://github.com/Bashamega/react-CVE-2025-55182-fixerPOC Details
141More exploit-focused; great for security research repos.https://github.com/orgito1015/CVE-2025-55182-RCE-ExploitPOC Details
142CVE-2025-55182 React Server Components RCE - Go PoChttps://github.com/keklick1337/CVE-2025-55182-golang-PoCPOC Details
143React2Shell-Exploit — Complete exploitation framework for CVE-2025-55182, including Python exploit, Docker vulnerable lab, Burp Suite manual and automated exploitation, Nuclei detection template, and validated testing workflow. Developed for penetration testing and educational research.https://github.com/rubensuxo-eh/react2shell-exploitPOC Details
144CVE-2025-55182 RCE - Massive Scanner POChttps://github.com/CirqueiraDev/MassExploit-CVE-2025-55182POC Details
145Detects exposed React Server Components vulnerable to CVE-2025-55182 via RSC negotiation.https://github.com/w3irdo21/CVE-2025-55182-react2shellPOC Details
146RCE exploitation tool targeting CVE-2025-55182, a critical vulnerability in React Server Components (RSC) affecting React 19.0.0 - 19.2.0 and Next.js applications.https://github.com/Hghost0x00/CVE-2025-55182POC Details
147Advanced security testing tool for CVE-2025-55182 vulnerability assessment in Next.js applications. Features interactive shell, batch scanning, WAF bypass, and comprehensive reporting.https://github.com/zamdevio/r2sPOC Details
148React2Shell, CVE-2025-55182, RCE Vulnerability: A critical breakdown of the unsafe deserialization flaw in React Server Components that enables unauthenticated remote code execution across default React/Next.js setups.https://github.com/AdityaBhatt3010/React2Shell-CVE-2025-55182-The-Deserialization-Bug-That-Broke-the-WebPOC Details
149Poc for CVE-2025-55182https://github.com/0xN7y/CVE-2025-55182POC Details
150React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0, including react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack, contain a remote code execution vulnerability.https://github.com/MuhammadWaseem29/React2Shell_Rce-cve-2025-55182POC Details
151CVE-2025-55182 RCE vulnerability in Next.js/React RSC servers (fully working exploit and scanner) https://github.com/l0n3m4n/CVE-2025-55182POC Details
152React Shell & Next.js RSC Exploit Tool (CVE-2025-55182)https://github.com/ynsmroztas/NextRcePOC Details
153A minimal RCE PoC for CVE-2025-55182https://github.com/shreyas-malhotra/React2Shell-CVE-2025-55182POC Details
154CVE-2025-55182 PoC Exploithttps://github.com/sohaibeb/CVE-2025-55182POC Details
155🛡️ Complete toolset for detecting and patching CVE-2025-55182 (React2Shell) - A critical CVSS 10.0 RCE vulnerability in React Server Components. Includes automated scanner, patcher, and MCP server integration.https://github.com/hlsitechio/cve-2025-55182-toolsPOC Details
156This is a fast, asynchronous Python tool that fingerprints domains for likely Next.js App Router / React Server Components (RSC) infrastructure. (I made it to find the applications possibly vulnerable to CVE-2025-55182 and CVE-2025-66478)https://github.com/vyvivekyadav04/RSC-Infra-ScannerPOC Details
157A modified and a little boosted exploit for CVE-2025-55182, React2Shell: Pre-authentication Remote Code Execution in React Server Packages https://github.com/MikeTheHash/CVE-2025-55182POC Details
158Multi-language security scanner with 64 analyzers + AI Agent Security. NEW: React2Shell CVE-2025-55182 detection (CVSS 10.0). Scan Python, JS, Go, Rust, Docker, Terraform, MCP & more. 11,500+ downloads. AGPL-3.0.https://github.com/Pantheon-Security/medusaPOC Details
159CVE-2025-55182 (React2Shell) Scannerhttps://github.com/rapticore/ore_react2shell_scannerPOC Details
160CVE-2025-55182 RCE vulnerability in Next.js/React RSC servers (fully working exploit and scanner) https://github.com/l0n3m4n/CVE-2025-55182-CleanPOC Details
161Automated scanner for CVE-2025-55182: a critical RCE vulnerability in React Server Components and Next.js.https://github.com/Qixinlee/CVE-2025-55182-ScannerPOC Details
162Security toolkit to detect CVE-2025-55182 (React2Shell) vulnerabilityhttps://github.com/DelvyGonzalez/react2shell-security-toolkitPOC Details
163Nonehttps://github.com/jumodada/react-cve-2025-55182-demoPOC Details
164Nonehttps://github.com/ahmedshamsddin/CVE-2025-55182POC Details
165This is CVE-2025-55182 exploithttps://github.com/LemonTeatw1/CVE-2025-55182-exploitPOC Details
166Nonehttps://github.com/mil4ne/CVE-2025-55182-React2Shell-POC Details
167Nonehttps://github.com/ethicalrohitt/React2Shell_cve-2025-55182POC Details
168This is an easy to use PoC script to exploit React2Shell-CVE-2025-55182 Nextjs vulnerability. This will help to gain a reverse shell.https://github.com/ihhgimhana/React2Shell-CVE-2025-55182-PoC-Reverse-ShellPOC Details
169CVE-2025-55182 Detector. Find which of your GitHub repositories are exposed to the critical React/Next.js RCE vulnerability and generate a clean Markdown report.https://github.com/shakilkhatri/scanner-for-CVE-2025-55182-vulnerabilityPOC Details
170react2shell PoC with Go / CVE-2025-55182https://github.com/UmmItKin/CVE-2025-55182-PoCPOC Details
171Nonehttps://github.com/robbin0919/CVE-2025-55182POC Details
172CVE-2025-55182-POChttps://github.com/zxz3650/CVE-2025-55182-POCPOC Details
173Critical RCE vulnerability scanner for React Server Components (CVE-2025-55182). Automated exploitation framework with multi-payload support, proxy capabilities, and interactive command execution.https://github.com/AliHzSec/CVE-2025-55182POC Details
174A complete framework for exploiting the vulnerability CVE-2025-55182https://github.com/zr0n/react2shellPOC Details
175Nonehttps://github.com/hunter24x24/CVE-2025-55182-massPOC Details
176Nonehttps://github.com/andressuarezmonk/CVE-2025-55182POC Details
177🔥 React2Shell Toolkit - CVE-2025-55182 & CVE-2025-66478https://github.com/cybertechajju/R2C-CVE-2025-55182-66478POC Details
178Nonehttps://github.com/Dh4v4l8/CVE-2025-55182-poc-toolPOC Details
179CVE-2025-55182 – React2Shell: Proof-of-Concept Remote Code Execution (RCE) exploit for Next.js apps. Features an interactive shell prompt to test and demonstrate the vulnerability in real time. Use for security research and authorized penetration-testing only. https://github.com/M4xSec/CVE-2025-55182-React2Shell-RCE-ShellPOC Details
180A standalone GUI tool to detect and demonstrate the **React Server Components Remote Code Execution (RCE)** vulnerability (CVE-2025-55182) in Next.js applications.https://github.com/SainiONHacks/CVE-2025-55182-ScannerPOC Details
181A bash script to scan your server for React applications vulnerable to **CVE-2025-55182** — a critical remote code execution vulnerability (CVSS 10.0) in React Server Components.https://github.com/umairahmadh/react-vuln-scannerPOC Details
182Torito React2Shell Scanner & Exploit Tool (CVE-2025-55182 / 66478)https://github.com/ToritoIO/Torito-R2SPOC Details
183react2shell CVE-2025-55182 PoC https://github.com/surajhacx/react2shellpocPOC Details
184Step-by-step walkthrough of CVE-2025-55182 (React2Shell) by tracing React's Flight protocol internals.https://github.com/kavienanj/CVE-2025-55182POC Details
185A curated list of resources regarding CVE-2025-55182, the critical Remote Code Execution (RCE) vulnerability in React Server Components known as "React2Shell".https://github.com/websecuritylabs/React2Shell-LibraryPOC Details
186Nonehttps://github.com/cyberleelawat/CVE-2025-55182POC Details
187High-fidelity RCE scanner for CVE-2025-55182 affecting Next.js RSC. Supports mass scanning, command execution, and automated recon pipelines. Built for pentesters, researchers, and bounty hunters.https://github.com/satriarizka/CVE-2025-55182-Simple-ScannerPOC Details
188[漏洞复现] 全球首款基于RSC特性能绕过WAF检测的CVE-2025-55182 React Server RCE 漏洞 EXP。https://github.com/xcanwin/CVE-2025-55182-React-RCEPOC Details
189Play with react2shell in a safe environment!https://github.com/CharlesTheGreat77/CVE-2025-55182-Test-ServerPOC Details
190* React2Shell-CVE-2025-55182https://github.com/ihsansencan/React2Shell-CVE-2025-55182POC Details
191Header bypass for CVE-2025-55182 (React Server Components RCE). https://github.com/ejpir/CVE-2025-55182-bypassPOC Details
192My research on CVE-2025-55182https://github.com/I3r1h0n/React2ShellPOC Details
193CVE-2025-55182 RCE vulnerability in Next.js/React RSC servers (exploit and scanner) https://github.com/l0n3m4n/CVE-2025-55182-WafPOC Details
194🔍 Shellockolm - Your Security Detective for React, Next.js & npm. Detects CVE-2025-55182, CVE-2025-66478, malware, and supply chain attacks. Elementary security for complex codebases!https://github.com/hlsitechio/shellockolmPOC Details
195POC and lab setuphttps://github.com/timsonner/React2Shell-CVE-2025-55182POC Details
196A security scanner for detecting CVE-2025-55182 React Server Components vulnerabilityhttps://github.com/xiaoxiunique/CVE-2025-55182-scannerPOC Details
197Nonehttps://github.com/lalaterry/CVE-2025-55182-React2Shell-labPOC Details
198scanner testinghttps://github.com/arashiyans/CVE-2025-55182-CVE-2025-66478POC Details
199Nonehttps://github.com/faizdotid/rust-cve-2025-55182POC Details
200CVE-2025-55182 + CVE-2025-66478 - Next.js/React Server Components Remote Code Executionhttps://github.com/lincemorado97/CVE-2025-55182_CVE-2025-66478POC Details
201React2Shell Vulnerabilityhttps://github.com/LucasPDiniz/CVE-2025-55182POC Details
202https://gist.github.com/maple3142/48bc9393f45e068cf8c90ab865c0f5f3https://github.com/wangzhengquan/CVE-2025-55182POC Details
203Nonehttps://github.com/lee191/CVE-2025-55182POC Details
204CVE-2025-55182 PoChttps://github.com/Night-have-dreams/CVE-2025-55182-PoCPOC Details
205ULTIMATE REACT4SHELL EXPLOITATION FRAMEWORK CVE-2025-55182 & CVE-2025-66478 Readyhttps://github.com/C00LN3T/React2ShellPOC Details
206Nonehttps://github.com/thekamran/CVE-2025-55182-Proof-of-ConceptPOC Details
207A modern, user-friendly GUI application for detecting and exploiting the CVE-2025-55182 vulnerability in React Server Components. Built with Python and Tkinter, featuring a sleek neon-themed interface for scanning targets, executing shell commands, and viewing live console output.https://github.com/Syrins/CVE-2025-55182-React2Shell-RCEPOC Details
208Nonehttps://github.com/0xsj/CVE-2025-55182POC Details
209a dart package to analyze CVE-2025-55182 react2shell https://github.com/Benrich127N/react2shell_analyzerPOC Details
210CVE-2025-55182https://github.com/7amzahard/React2shellPOC Details
211CVE-2025-55182 취약점에 대한 샘플을 AI와 함께 작성 및 테스트 했습니다.https://github.com/randarts/react-rcePOC Details
212A lightweight, recursive Bash script to detect Next.js and React Server DOM versions vulnerable to CVE-2025-55182 (React2Shell) in local projects.https://github.com/hamm0nz/react2shell-auditPOC Details
213Nonehttps://github.com/0xSalm0n/CVE-2025-55182POC Details
214Nonehttps://github.com/Macaroniwdcheese/CVE-2025-55182-LabPOC Details
215Exploit for CVE-2025-55182 (React4Shell)https://github.com/LvMalware/CVE-2025-55182POC Details
216Nonehttps://github.com/HUAHUAI23/CVE-2025-55182-POCPOC Details
217Alat ini mendeteksi potensi kerentanan React2Shell (CVE-2025-55182) dalam proyek React dengan memeriksa: - File `package.json` dan file lock untuk paket rentan - Direktori `node_modules` untuk dependensi yang terpengaruh - URL secara pasif untuk deteksi jarak jauhhttps://github.com/cahyod/react2shellPOC Details
218CVE-2025-55182-scanner with 2 different methodhttps://github.com/yaupunal/CVE-2025-55182-scannerPOC Details
219Nonehttps://github.com/jandelima/cve-2025-55182-poc-testPOC Details
220🔍 Next.js RCE Scanner (CVE-2025-55182) - Automated vulnerability scanner using Zoomeye search engine. Discovers targets via dorks and tests for CVE-2025-55182 with parallel scanning capabilities.https://github.com/im-ezboy/CVE-2025-55182-zoomeyePOC Details
221CVE-2025-55182 Burp Passive Extensionhttps://github.com/Ibonok/CVE-2025-55182-Burp-Passive-ExtensionPOC Details
222 CVE-2025-55182 React2Shell PoChttps://github.com/lowercasenumbers/CVE-2025-55182POC Details
223[React2Hell] Next.js/React Server RCE Exploit — CVE-2025-55182https://github.com/AggressiveUser/React2HellPOC Details
224CVE-2025-55182 Next.js RCE Exploit Toolhttps://github.com/racall/cve-2025-55182-nodePOC Details
225CVE-2025-55182 and CVE-2025-66478https://github.com/FurkanKAYAPINAR/ReactNext2ShellPOC Details
226rsc-detect-cve-2025-55182 is a static analysis tool designed to detect potential indicators of CVE-2025-55182https://github.com/horsenyet/RSC-Detect-CVE-2025-55182POC Details
227Nonehttps://github.com/LQTjim/next-bug-CVE-2025-55182POC Details
228Heuristic security scanner for detecting React Server Components (RSC) vulnerabilities, including React2Shell-style behavior (CVE-2025-55182). Safe, non-exploitative, multi-target capable.https://github.com/AliAbdollahiii/react2shell_detectorPOC Details
229A Chrome extension for detecting React2Shell vulnerabilities (CVE-2025-55182 & CVE-2025-66478) in web applicationshttps://github.com/xiaopeng-ye/react2shell-detectorPOC Details
230VulnCheck CVE-2025-55182 react2shellhttps://github.com/vulncheck-oss/cve-2025-55182POC Details
231Scanner to detect the presence of CVE-2025-55182 & CVE-2025-66478 on targeted web services.https://github.com/Shield-Cyber/react2shell-scannerPOC Details
232Nonehttps://github.com/imbas007/POC-CVE-2025-55182POC Details
233* React2Shell-CVE-2025-55182https://github.com/chitoz1300/React2Shell-CVE-2025-55182POC Details
234Thực hiện để test CVE 2025 55182https://github.com/foodmen2111/test-cve-2025-55182POC Details
235CVE-2025-55182 检测方式和攻击利用https://github.com/sun977/CVE-2025-55182POC Details
236PoC-react2shell-CVE-2025-55182https://github.com/garux-sec/PoC-react2shell-CVE-2025-55182POC Details
237Detect CVE-2025-55182 & CVE-2025-66478 in Next.js/RSC applications (Rust)https://github.com/ancs21/react2shell-scanner-rustPOC Details
238Detection of the React Server Actions Exploit vector – CVE-2025-55182 / CVE-2025-66478https://github.com/MoisesTapia/http-react2shellPOC Details
239Nonehttps://github.com/hadipra5/CVE-2025-55182-Auto-Exploit-ToolkitPOC Details
240Nonehttps://github.com/techgaun/cve-2025-55182-scannerPOC Details
241React2Shell (CVE-2025-55182) proof-of-concept (PoC) exploit demonstrating a CRITICAL remote code execution (RCE) vulnerability in modern web frameworks using React Server Components (RSC).https://github.com/rsch-io/CVE-2025-55182-React2ShellPOC Details
242Nonehttps://github.com/ilixm/PoC-RCE-CVE-2025-55182POC Details
243Nonehttps://github.com/iamblacksolo2-BugBounty/POC-CVE-2025-55182POC Details
244a simple react2shell poc with basic waf bypasshttps://github.com/joelvaiju/react2shell-CVE-2025-55182-pocPOC Details
245POC-CVE-2025-55182https://github.com/DevVaibhav07/POC-CVE-2025-55182POC Details
246Python3 script that can be used to demonstrate **CVE-2025-55182**. It exploits a server-side JavaScript injection vulnerability in Next.js/React applications, allowing **remote code execution** via malformed multipart form data. https://github.com/liamromanis101/cve-2025-55182POC Details
247Nonehttps://github.com/ysfcndgr/React2Shell-CVE-2025-55182-Advanced-ScannerPOC Details
248Nonehttps://github.com/alfazhossain/CVE-2025-55182-ExploiterPOC Details
249Nonehttps://github.com/keshavyaduvans/cve-2025-55182POC Details
250proofhttps://github.com/byte16384/CVE-2025-55182POC Details
251POC for React2Shell (CVE-2025-55182)https://github.com/kondukto-io/vulnerable-next-js-pocPOC Details
252Test case for CVE-2025-55182https://github.com/react2shell-repo-menagerie/CVE-2025-55182-single-nextjs-npm-rsc-webpackPOC Details
253Test case for CVE-2025-55182https://github.com/react2shell-repo-menagerie/CVE-2025-55182-single-nextjs-npm-rsc-parcelPOC Details
254Test case for CVE-2025-55182https://github.com/react2shell-repo-menagerie/CVE-2025-55182-single-nextjs-npm-rsc-turbopackPOC Details
255Nonehttps://github.com/eytannatye/R2S_CVE-2025-55182POC Details
256PoC, Hunting React2Shell about CVE-2025-55182https://github.com/Jaycelation/CVE-2025-55182POC Details
257React2Shell is a Python-based proof-of-concept tool designed to exploit CVE-2025-55182 and CVE-2025-66478, both impacting Next.js applications using React Server Components (RSC).https://github.com/shyambhanushali/React2ShellPOC Details
258Nonehttps://github.com/amir-malek/react-cve-2025-55182POC Details
259CVE-2025-55182-advanced-scannerhttps://github.com/Ankitspandey07/React2ShellPOC Details
260malware I found on my serverhttps://github.com/Stonelinks/react-cve-2025-55182POC Details
261A critical vulnerability in React Server Components affecting React 19 (CVE-2025-55182) and frameworks that use it like Next.js (CVE-2025-66478). https://github.com/dr4xp/react2shellPOC Details
262Proof of Concept for CVE-2025-55182 ("React2Shell"). A fully dockerized environment demonstrating Remote Code Execution (RCE) via insecure deserialization in React Server Components. Includes vulnerable targets for both Vanilla React (Express) and Next.js, along with a custom Python exploit script.https://github.com/trax69/cve-2025-55182-pocPOC Details
263Demo of CVE-2025-55182 — Next.js RCE (for educational purposes)https://github.com/osman-butt/CVE-2025-55182-demoPOC Details
264Nonehttps://github.com/mil4ne/CVE-2025-55182-React2ShellPOC Details
265py script proof of concept new CVE-2025-55182 based in lachlan2k scripthttps://github.com/notkittenn/poc_react2shellPOC Details
266ReactGuard provides framework- and vulnerability-detection tooling for CVE-2025-55182 (React2Shell)https://github.com/theori-io/reactguardPOC Details
267Nonehttps://github.com/iamblacksolo2-BugBounty/POC2-CVE-2025-55182POC Details
268Nonehttps://github.com/BakhodiribnYashinibnMansur/CVE-2025-55182POC Details
269CVE-2025-55182 React RCE Test Serverhttps://github.com/theman001/CVE-2025-55182_PoC-Test-ServerPOC Details
270Next.js RCE via React Server Functionshttps://github.com/gunyakit/CVE-2025-55182-PoC-exploitPOC Details
271A command-line tool for detecting CVE-2025-55182 and CVE-2025-66478 in Next.js applications using React Server Components.https://github.com/rix4uni/CVE-2025-55182POC Details
272A portable Bash script to detect vulnerable versions of React Server DOM and Next.js packages affected by [CVE-2025-55182]https://github.com/gonaumov/cve-2025-55182-checkerPOC Details
273Nonehttps://github.com/BeichenDream/CVE-2025-55182-GodzillaMemoryShellPOC Details
274Nonehttps://github.com/Legus-Yeung/CVE-2025-55182-exploitPOC Details
275Nonehttps://github.com/DanielXavierJob/-CVE-2025-55182POC Details
276Reproduction for Next.js CVE-2025-55182 version string confusion issuehttps://github.com/sponte/nextjs-cve-version-confusionPOC Details
277Nonehttps://github.com/CrazyloveforWeb/Golang-CVE-2025-55182-POCPOC Details
278Nmap NSE script for scanning React2Shell (CVE-2025-55182)https://github.com/JahazielLem/NSE_CVE-2025-55182POC Details
279Elite exploitation toolkit for CVE-2025-55182 (React Server Components RCE). Async polymorphic payloads, advanced WAF/CDN bypass, proxy rotation, Shodan/Censys mass scan, auto-pwn + reverse shells, Nuclei templates, K8s lab & C2 dashboard. Authored by Sudeepa Wanigarathna – strictly for authorized red team and penetration testing.https://github.com/CerberusMrX/Cerberus-React2Shell-Scanner-ExploitPOC Details
280nmap script to scan react2shell (CVE-2025-55182 and CVE-2025-66478) Vulnerabilityhttps://github.com/Saad-Ayady/react2shellNSEPOC Details
281RscScan: Professional cross-platform vulnerability scanner for Next.js Server Actions (CVE-2025-55182). Detects critical RCE flaws with multi-threaded scanning, real-time analytics, and multi-language support. Built with Electron & React.https://github.com/VeilVulp/RscScanPOC Details
282A CTF challenge based on CVE-2025-55182 Vulnerabilityhttps://github.com/yz9yt/React2Shell-CTFPOC Details
283Nonehttps://github.com/Gymnott1/CVE-2025-55182POC Details
284A simple toolkit to validate, exploit & gain an interactive shell via the react2Shell Next.js RCE.https://github.com/J4ck3LSyN-Gen2/CVE-2025-55182POC Details
285Working Proof of Concept (PoC) for CVE-2025-55182 (React2Shell) - Unauthenticated Remote Code Execution in Next.js 15.0.0 via React Server Componentshttps://github.com/pkrasulia/CVE-2025-55182-NextJS-RCE-PoCPOC Details
286Firefox extension to detect and exploit CVE-2025-55182 - Prototype Pollution RCE in Next.js React Server Actionshttps://github.com/oscarmine/R2SAEPOC Details
287Next.js-Exploit-Tool 图形化综合利用工具,基于 Go 开发,一款针对 CVE-2025-55182 的独立安全评估工具。https://github.com/Rsatan/Next.js-Exploit-ToolPOC Details
288Nonehttps://github.com/min8282/CVE-2025-55182POC Details
289Intentionally vulnerable Next.js app for CVE-2025-55182 security research and CTF challengeshttps://github.com/Machine-farmer/PunchingBag-for-React2ShellPOC Details
290Nonehttps://github.com/exrienz/CVE-2025-55182-NextJS-Scanner-React2Shell-PoCPOC Details
291Educational / research tool related to React / Next.js vulnerability CVE‑2025‑55182 (“React2Shell”).https://github.com/mrmtwoj/React2Shell-CVE-2025-55182POC Details
292Nonehttps://github.com/xalgord1/CVE-2025-55182-POCPOC Details
293Nonehttps://github.com/LC-pro/CVE-2025-55182-EXPPOC Details
294This tool is a Proof of Concept (PoC) intended for security research and educational purposes only. Using this tool on systems without explicit permission is illegal and punishable by law. The author (Tiger-Foxx) assumes no responsibility for misuse.https://github.com/Tiger-Foxx/exploit-react-CVE-2025-55182POC Details
295React2Shell (CVE-2025-55182) scannerhttps://github.com/trilogy-group/react2shell-scanPOC Details
296Interactive visualization explaining React Server Components, Flight Protocol, and the React2Shell (CVE-2025-55182) RCE vulnerability. Features narrated animations synced with ElevenLabs + Whisper.https://github.com/VolksRat71/react2shellexploitvisualizedPOC Details
297A Chrome extension for detecting React2Shell vulnerabilities (CVE-2025-55182 & CVE-2025-66478) in web applicationshttps://github.com/anuththara2007-W/CVE-2025-55182-Exploit-extensionPOC Details
298CVE-2025-55182https://github.com/andrei2308/react2shellPOC Details
299Nonehttps://github.com/Nkwenti-Severian-Ndongtsop/POC_react2shell_CVE-2025-55182POC Details
300R2S is a comprehensive exploitation and post-exploitation framework targeting the Next.js React Server Components vulnerability (CVE-2025-55182). It provides an interactive shell with advanced features for penetration testing, including file transfer, persistence, enumeration, privilege escalation checks, and more.https://github.com/4nuxd/React2ShellPOC Details
301Burp Suite extension for identifying the React Server Components unsafe deserialization vulnerability (React2Shell / CVE-2025-55182). It provides a focused UI tab, context-menu actions, active-scanner integration, and optional Burp Collaborator confirmation.https://github.com/j0lt-github/react2shell-burpPOC Details
302RscScan: Professional cross-platform vulnerability scanner for Next.js Server Actions (CVE-2025-55182). Detects critical RCE flaws with multi-threaded scanning, real-time analytics, and multi-language support. Built with Electron & React.https://github.com/VeilVulp/RscScan-cve-2025-55182POC Details
303CVE-2025-55182 payloadhttps://github.com/IrsyadSEC/CVE-2025-55182-MassPayloadAttackPOC Details
304POC React2Shell-CVE-2025-55182https://github.com/Shadowroot97/React2Shell-CVE-2025-55182POC Details
305Nonehttps://github.com/yuta3003/CVE-2025-55182POC Details
306Nonehttps://github.com/securifyai/React2Shell-CVE-2025-55182POC Details
307Nonehttps://github.com/W41T3D3V1L/COMPLETE-CVE-2025-55182POC Details
308CVE-2025-55182 React2Shell in rust https://github.com/0x5k/rs_CVE-2025-55182_React2ShellPOC Details
309simple Proof-of-Concept (PoC) exploit for CVE-2025-55182https://github.com/raivenLockdown/RCE_React2Shell_ButCooler-SomeUselessUsefulThingsLMAO-POC Details
310CVE-2025-55182 の検証用https://github.com/oguri-souhei/CVE-2025-55182POC Details
311Advanced Exploitation Toolkit for Next.js Server Actions (CVE-2025-55182)https://github.com/xalgord/React2ShellPOC Details
312POC React2Shell - CVE-2025-55182 - CVE-2025-55184https://github.com/caohungphu/react2shellPOC Details
313Nonehttps://github.com/ryanhafid/PoC_CVE-2025-55182POC Details
314Nonehttps://github.com/ryanhafid/Scan_CVE-2025-55182POC Details
315CVE-2025-55182 - React2Shell Educational Toolhttps://github.com/0xLutfifakee/CVE-2025-55182-React2ShellPOC Details
316CVE-2025-55182 – CVE-2025-66478 – React2Shellhttps://github.com/gagaltotal/tot-react-rce-CVE-2025-55182POC Details
317AI agent-ready prompt to scan Node.js/React/Next.js projects for Shai-Hulud 2.0 (npm worm) and React2Shell (CVE-2025-55182 RCE). Guides AI agents (Claude, Gemini, Grok, etc.) to check dependencies, versions, GitHub repos, detect compromise, and provide step-by-step remediation.https://github.com/eaizy/react2hulud-scanPOC Details
318Security testing toolkit for CVE-2025-55182 - React Server Components RCE via prototype pollution. Includes CLI scanner, Chrome extension, Nuclei templates, and Docker lab with CTF flags.https://github.com/sho-luv/React2ShellPOC Details
319High-performance Go implementation for detecting React Server Components RCE vulnerabilities (CVE-2025-55182 & CVE-2025-66478).https://github.com/h0tak88r/next88POC Details
320Hack The Box Writeup for Retired Challenge ReactOOPS - Complete solution and educational guide to CVE-2025-55182/CVE-2025-66478 (React2Shell RCE). Includes detailed vulnerability analysis, exploitation techniques, and team learning materials.https://github.com/TheStingR/ReactOOPS-WriteUpPOC Details
321A CLI tool that exploits vulnerabilities in React Server Components and Server Actions (CVE-2025-55182, CVE-2025-66478) to achieve remote code execution (RCE) on vulnerable servers.https://github.com/mantvmass/react2shellPOC Details
322A CVE-2025-55182(React2Shell) Toolbox Applicationhttps://github.com/MoLeft/React2Shell-ToolboxPOC Details
323Analysis, Validation Environment, and POC for CVE-225-55182 Vulnerability.https://github.com/Ya0h4cker/CVE-2025-55182POC Details
324A research report on CVE-2025-55182 (React2Shell). https://github.com/Kugelbyte/React2Shell-AnalysisPOC Details
325A hands-on lab for understanding and exploiting CVE-2025-55182 (React2Shell) - Remote Code Execution in React Server Componentshttps://github.com/dhananjayakumarn/CVE-2025-55182-LabPOC Details
326Nonehttps://github.com/ZorvithonLeo-Null/CVE-2025-55182-exploitPOC Details
327NodeJS-based exploit script and scanner for the React Server Components "React2Shell" vulnerability (CVE-2025-55182).https://github.com/sangleshubham/React-Security-CVE-2025-55182-ExploitPOC Details
328A hybrid security scanner for detecting CVE-2025-55182 in Next.js and Waku applications. Features combined static code analysis and safe dynamic verification for DevSecOps workflows.https://github.com/TrixSec/CVE-2025-55182-ScannerPOC Details
329Check if your server is affected by CVE-2025-55182 & CVE-2025-66478https://github.com/mounta11n/CHECK-CVE-2025-55182-AND-CVE-2025-66478POC Details
330Nonehttps://github.com/grejh0t/CVE-2025-55182POC Details
331A modern Next.js vulnerable web app themed as a news / blog portal for CVE-2025-55182 (React) and CVE-2025-66478 (Next.js) to learn, detect, and safely exercise React2Shell. Runs unpatched React 19.0.0 and Next.js 15.0.3.https://github.com/hidden-investigations/react2shell-vulnlabPOC Details
332💥Extension Tool para Auditoría y Explotación avanzada RCE/Source Leak/Dos (CVE-2025-55182/83/84) para entornos Next.js y React Server Components (RSC) directamente desde tu navegador ❌https://github.com/MammaniNelsonD/React2P4IM0NshellPOC Details
333Nonehttps://github.com/tinashelorenzi/CVE-2025-55182POC Details
334An advanced command-line framework for discovery, validation, and exploitation of CVE-2025-55182 and CVE-2025-66478 affecting Next.js applications using React Server Components (RSC).https://github.com/ProwlSec/React2ShellPOC Details
335Proof-of-Concept for CVE-2025-55182, a critical unauthenticated RCE in React Server Components.https://github.com/VVVI5HNU/CVE-2025-55182POC Details
336CVE-2025-55182-Advanced-Scanner is an automated security tool designed to detect and validate the CVE-2025-55182 vulnerability efficiently. it helps security researchers and bug bounty hunters quickly identify affected targets with accurate results and minimal false positives.https://github.com/CyberPrince-hub/React2shell-ultimate-scannerPOC Details
337Precision-Based Detection of RSC/Next.js Remote Code Execution Vulnerabilities (CVE-2025-55182, CVE-2025-66478)https://github.com/hidden-investigations/react2shell-scannerPOC Details
338Nonehttps://github.com/mivmi/CVE-2025-55182POC Details
339React2shell-web-scannerhttps://github.com/Security-Phoenix-demo/react2shell-scanner-CVE-2025-55182POC Details
340This project provides a fully functional demonstration of CVE-2025-55182 (React2Shell) - a critical Remote Code Execution vulnerability in React Server Components and Next.js.https://github.com/subhdotsol/CVE-2025-55182POC Details
341 cve-2025-55182https://github.com/Call123X/-cve-2025-55182POC Details
342Nonehttps://github.com/hulh122/CVE-2025-55182POC Details
343Nonehttps://github.com/simantchaudhari/CVE-2025-55182POC Details
344This repo contains the scripts you can execute to simulate the (CVE-2025-55182) along with next.js serverhttps://github.com/premdanav/react2shelldemoPOC Details
345RCE exploitation tool targeting CVE-2025-55182, a critical vulnerability in React Server Components (RSC) affecting React 19.0.0 - 19.2.0 and Next.js applications.https://github.com/Yyax13/CVE-2025-55182POC Details
346Nonehttps://github.com/S-Mughal/NextJS-app-CVE-2025-55182POC Details
347試してみるよんhttps://github.com/itumo-arigatone/study-CVE-2025-55182POC Details
348CVE-2025-55182https://github.com/EQSTLab/CVE-2025-55182POC Details
349React2Shell Exploitation Tool (CVE-2025-55182)https://github.com/scumfrog/FiberBreakPOC Details
350Nonehttps://github.com/d0cnull/nextjs-CVE-2025-55182POC Details
351An advanced vulnerability scanner for detecting **CVE-2025-55182** and **CVE-2025-66478** - critical Remote Code Execution (RCE) vulnerabilities in Next.js applications using React Server Components (RSC).https://github.com/Mustafa1p/Next.js-RCE-Scanner---CVE-2025-55182-CVE-2025-66478POC Details
352A proof-of-concept tool for demonstrating the critical React2Shell vulnerabilityhttps://github.com/M4rgs/CVE-2025-55182-React2Shell-ExploitPOC Details
353Quyida to‘liq LAB rejasi: demo-vulnerable app → Python PoC → Metasploit exploit skeletonhttps://github.com/nulltrace1336/CVE-2025-55182-Metasploit-exploit-skeleton-real-flow-POC Details
354React2shell vulnerable lab (CVE-2025-55182) https://github.com/pwnxpl0it/react2shell-labPOC Details
355Proof-of-concept research tool for CVE-2025-55182, a critical unauthenticated RCE in Next.js App Router caused by server-side object injection in React Server Components and Server Actions, including UTF-16LE WAF evasion techniques.https://github.com/ceh-aditya-raj/CVE-2025-55182POC Details
356High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)https://github.com/aleksandrova834/react2shell-bypasswafPOC Details
357Lightweight Go toolkit plus a Dockerized Next.js lab to explore and triage CVE-2025-55182.https://github.com/r4j3sh-com/CVE-2025-55182POC Details
358React2Shell Vulnerability Verification Script (React2Shell also known as CVE-2025-55182).https://github.com/degenwithheart/React2Shell-Vulnerability-Verification-ScriptPOC Details
359Nonehttps://github.com/rashedhasan090/cve-2025-55182-mitigatorPOC Details
360React2Shell (CVE-2025-66478): A Python-based Proof of Concept for Critical Remote Code Execution (RCE) in Next.js Server Components. Features an interactive CLI, custom payload injection, and cleaner output formatting. For educational research only.https://github.com/RavinduRathnayaka/CVE-2025-55182-PoCPOC Details
361Nonehttps://github.com/dajneem23/CVE-2025-55182POC Details
362React2Shell vulnerability (CVE-2025-55182 / CVE-2025-66478) Full Scripthttps://github.com/chrahman/react2shell-CVE-2025-55182-full-rce-scriptPOC Details
363Nonehttps://github.com/lamaper/CVE-2025-55182-ToolboxPOC Details
364A Python-based security scanner for detecting and exploiting **React Server Components (RSC)** vulnerabilities in Next.js applications. This tool performs passive detection, active fingerprinting, and RCE exploitation testing.https://github.com/mahaveer-choudhary/CVE-2025-55182POC Details
365Secure-by-default demo lab showing how container hardening (distroless images, non-root, read-only filesystem, runtime-injected secrets) can neutralize a critical Next.js/React Server Actions RCE (CVE-2025-55182 “React2Shell”), with side-by-side safe vs unsafe deployments and exploit logshttps://github.com/MeGaNeKoS/secure-by-default-rce-demoPOC Details
366Nonehttps://github.com/TamaGorengs/react2shell-poc-CVE-2025-55182POC Details
367Nonehttps://github.com/dbwlsdnr95/CVE-2025-55182-React2Shell-Nextjs-RSC-AnalysisPOC Details
368A self-hosted vulnerable Next.js environment running on Docker for simulating CVE-2025-55182. Built for educational security research and CTF practice.https://github.com/xxxTectationxxx/React2Shell-CVE-LabPOC Details
369RSC Detect CVE 2025 55182https://github.com/vijay-shirhatti/RSC-Detect-CVE-2025-55182POC Details
370CVE-2025-55182 React2Shell PoC - RCE via React Server Componentshttps://github.com/p3ta00/react2shell-pocPOC Details
371analyzing the CVE-2025-55182 vulnerability within Next.js Server Actionshttps://github.com/niokagi/react-cve-2025-55182POC Details
372NextJS exploiter for CVE-2025-55182 and more. https://github.com/vonuyvicoo/nextploiterPOC Details
373React2Shell Critical Vulnerability (CVE-2025-55182)https://github.com/knightwolf01/React2ShellPOC Details
374React2Shell: An exploitation framework for CVE-2025-55182 (Next.js/React RCE).https://github.com/BlackTechX011/React2ShellPOC Details
375Exploit Code for React2Shell RCE vulnerability (CVE-2025-55182) affecting React Server Components 19.0.0-19.2.0. Exploits unsafe deserialization for unauthenticated remote code execution.https://github.com/S3cr3t-SDN/React4ShellPOC Details
376CVE-2025-55182 & CVE-2025-66478 proof of conceptshttps://github.com/aseemyash/krlePOC Details
377a controlled environment to test CVE-2025-55182.https://github.com/ckex/test-vulnPOC Details
378Interactive RCE exploitation tool for CVE-2025-55182 (React Server Components)https://github.com/Anon2Fear/CVE-2025-55182POC Details
379🔍 Scan for CVE-2025-55182 risks in React Server Components with this non-intrusive tool that helps detect critical vulnerabilities in your applications.https://github.com/mayank729/CVE-2025-55182-scannerPOC Details
380🚨 Exploit and scan for CVE-2025-55182, a critical React/Next.js vulnerability enabling remote code execution through prototype pollution techniques.https://github.com/phornnato/CVE-2025-55182POC Details
381CVE-2025-55182 React RCE Test Programhttps://github.com/theman001/CVE-2025-55182POC Details
382React2Shell vulnerability verification lab for BreachPilot testing (CVE-2025-55182 simulation)https://github.com/d01ki/react2shell-labPOC Details
383🛡️ Explore CVE-2025-55182, a critical RCE vulnerability in React's Flight Protocol, demonstrating exploitation techniques and mitigation strategies.https://github.com/Farhan9488/CVE-2025-55182-researchPOC Details
384This is a lab for reproducing CVE-2025-55182.https://github.com/bigbluewhale111/CVE-2025-55182-LABPOC Details
385🚨 Identify and address CVE-2025-55182, a critical React Server vulnerability allowing remote code execution without authentication.https://github.com/Ghost121111/Blackash-CVE-2025-55182POC Details
386🚨 Demonstrate CVE-2025-55182, a critical React vulnerability allowing remote code execution via prototype chain pollution in `react-server-dom-webpack@19.0.0`.https://github.com/slreaperking/CVE-2025-55182-pocPOC Details
387A evolved version of assetnote CVE-2025-55182 scannerhttps://github.com/guiimoraes/react2shell-evolvedPOC Details
388🔍 Demonstrate CVE-2025-55182, a critical vulnerability in React Server Components allowing unauthenticated arbitrary code execution.https://github.com/wiixx44/CVE-2025-55182POC Details
389🛠️ Share original PoCs for CVE-2025-55182 in React2Shell, showcasing effective remote code execution examples for developers and security researchers.https://github.com/Huzii11/React2Shell-CVE-2025-55182-original-pocPOC Details
390🔍 Detect vulnerabilities CVE-2025-55182 and CVE-2025-66478 in Next.js apps with this reliable command-line scanner.https://github.com/meneim99/react2shell-scannerPOC Details
391Nonehttps://github.com/alyaapm/CVE-2025-55182-shellinteractivePOC Details
392🚨 Exploit CVE-2025-55182 to demonstrate RCE in React Server Functions, highlighting risks from insecure prototype references in Next.js applications.https://github.com/Mayca369/CVE-2025-55182POC Details
393🔍 Exploit CVE-2025-55182 in Next.js with this versatile tool for security research, featuring advanced payloads and WAF bypass techniques.https://github.com/sobuj0007/Nextjs_RCE_Exploit_ToolPOC Details
394Nonehttps://github.com/Jakelife/HACKVISER-CVE-2025-55182-LABPOC Details
395Nonehttps://github.com/thqxploit666/CVE-2025-55182POC Details
396Mass Bot Exploithttps://github.com/itsismarcos/Bot-exploit-CVE-2025-55182POC Details
397Exploitation script for CVE-2025-55182. This is modified only for my personal use. If you are facing any problem fix it yourself.https://github.com/0xROI/CVE-2025-55182POC Details
398React2Shell Scannerhttps://github.com/Updatelap/CVE-2025-55182POC Details
399⚡ Discover and exploit CVE-2025-55182 with this PoC, offering reliable remote code execution tests for React Server Components in Next.js.https://github.com/9988700/CVE-2025-55182-POC-NEXTJSPOC Details
400script to help solve the lab on hackviser covering (CVE-2025-55182)https://github.com/kanyokoo/React-Server-Components-Remote-Code-Execution-CVE-2025-55182-POC Details
401🔍 Detect and demonstrate RCE vulnerabilities in React Server Components and Next.js with this comprehensive security research toolkit.https://github.com/ahmedtouzani/CVE-2025-55182POC Details
402🚨 Exploit CVE-2025-55182, a critical RCE vulnerability in React Server Components for Next.js apps; enables testing for prototype pollution risks.https://github.com/iksanwkk/CVE-2025-55182-expPOC Details
403⚠️ Explore a vulnerable environment to test security scanners against the CVE-2025-55182 RCE flaw in React Server Components and Next.js applications.https://github.com/ahmed-dev-op/CVE-2025-55182POC Details
404🛠️ Detect and exploit CVE-2025-55182 vulnerabilities in Next.js applications with this easy-to-use command-line scanner.https://github.com/haftomgu/CVE-2025-55182-advanced-scanner-POC Details
405Nonehttps://github.com/KingHacker353/R2C-CVE-2025-55182-66478POC Details
406🛠️ Exploit CVE-2025-55182 in Next.js with this interactive shell tool, enabling security researchers to verify vulnerabilities on authorized targets.https://github.com/MysticalHearts/CVE-2025-55182-React2Shell-RCE-ShellPOC Details
407🛠️ Exploit CVE-2025-55182 in Next.js with an interactive shell for security testing on authorized targets. Use responsibly for effective vulnerability assessment.https://github.com/MysticalHearts/mysticalhearts.github.ioPOC Details
408Nonehttps://github.com/Threekiii/Awesome-POC/blob/master/%E4%B8%AD%E9%97%B4%E4%BB%B6%E6%BC%8F%E6%B4%9E/React%20Server%20Components%20Flight%20%E5%8D%8F%E8%AE%AE%E5%8F%8D%E5%BA%8F%E5%88%97%E5%8C%96%E4%BB%A3%E7%A0%81%E6%89%A7%E8%A1%8C%20CVE-2025-55182.mdPOC Details
409Nonehttps://github.com/pitufo1721/CVE-2025-55182-GodzillaMemoryShellPOC Details
410🛠️ Exploit CVE-2025-55182 effortlessly with this GUI tool for vulnerability detection, command execution, and Shell reverse connections.https://github.com/vick333-peniel/ReactExploitGUIPOC Details
411🛠️ Exploit CVE-2025-55182 with this GUI tool for vulnerability detection, command execution, and shell access on Windows and macOS systems.https://github.com/vick333-peniel/vick333-peniel.github.ioPOC Details
412CVE-2025-55182https://github.com/Ashwesker/Ashwesker-CVE-2025-55182POC Details
413Interactive shell exploitation for CVE-2025-55182https://github.com/ogpourya/CVE-2025-55182POC Details
414CVE-2025-55182 and CVE-2025-66478https://github.com/FurkanKAYAPINAR/React-Next-ScannerPOC Details
415Nonehttps://github.com/amirali-ramezani/react2shell-CVE-2025-55182-POC Details
416This repository provides a proof-of-concept for CVE-2025-55182 (React2Shell), a remote code execution vulnerability in React Server Components. It demonstrates how the exploit works, including the payload and impact.https://github.com/git0xLai/React2ShellPoCPOC Details
417🎯 Automated vulnerability scanner for React2Shell RCE - Google dorking + safe detection for CVE-2025-55182/CVE-2025-66478 (CVSS 10.0)https://github.com/hndko/react2shell-rce-autobotPOC Details
418Nonehttps://github.com/Goultarde/CVE-2025-55182-React2Shell-LabPOC Details
419CVE-2025-55182(React Server Components 反序列化远程代码执行漏洞)https://github.com/xiaoLvChen/CVE-2025-55182POC Details
420🛡️ Scan and assess vulnerabilities in Next.js/Waku with the CVE-2025-55182-Scanner, combining static and dynamic analysis for robust security.https://github.com/captain4554/CVE-2025-55182-ScannerPOC Details
421🔍 Scan for CVE-2025-55182 vulnerabilities with a hybrid tool that combines static and dynamic analysis for improved security assessments.https://github.com/captain4554/captain4554.github.ioPOC Details
422CVE-2025-55182 - Tool React2Shellhttps://github.com/ghostn4444/CVE-2025-55182POC Details
423A HackIndex.io sandbox environment for the React2Shell vulnerability.https://github.com/HackIndex-io/React2Shell-CVE-2025-55182POC Details
424RSC Detect CVE 2025 55182https://github.com/vrx7men2/RSC-Detect-CVE-2025-55182POC Details
425Nonehttps://github.com/rahuulmiishra/react2shell-CVE-2025-55182POC Details
426CVE-2025-55182 漏洞检测与利用工具(GUI版)https://github.com/m3ngx1ng/CVE-2025-55182-GUIPOC Details
427React2Shell – CVE-2025-55182https://github.com/tiago4lexandre/React2ShellPOC Details
428Nonehttps://github.com/joaovicdev/EXPLOIT-CVE-2025-55182POC Details
429React2Shell CVE-2025-55182: unauthenticated unsafe deserialization in React Server Components leading to reliable remote code execution via the Flight protocol.https://github.com/AdityaBhatt3010/React2Shell-CVE-2025-55182POC Details
430🔍 Discover and scan vulnerable Next.js instances to protect your infrastructure from critical RCE vulnerabilities like CVE-2025-55182.https://github.com/gahoole77/gahoole77.github.ioPOC Details
431Nextjs RCE Exploithttps://github.com/lucyz1125/CVE-2025-55182-Next.js-RCEPOC Details
432next.js rce exploithttps://github.com/hyan0116/Next.js-RCE-CVE-2025-55182POC Details
433"Once upon a time, the Castle of Reactland trusted all Flight messages... until The Imposter arrived." A storytelling CVE-2025-55182 (React2Shell) demo - Medieval-themed vulnerable React Server Components app for security education.https://github.com/MyCompanyOrganization/React2Shell-KingdomPOC Details
434Simple Lab for React2Shell CVE-2025-55182https://github.com/shibaaa204/React2ShellPOC Details
435CVE-2025-55182-poc-jsonhttps://github.com/en0f/CVE-2025-55182-poc-jsonPOC Details
436CVE-2025-55182-bypass-wafhttps://github.com/momika233/CVE-2025-55182-bypassPOC Details
437🔍 Exploit CVE-2025-55182 vulnerabilities in Next.js and React with this efficient framework for rapid testing and assessment.https://github.com/Asder10/React2ShellPOC Details
438🛠️ Exploit CVE-2025-55182 using React2Shell, an advanced framework for Next.js and React remote code execution. Secure your applications effectively.https://github.com/Asder10/asder10.github.ioPOC Details
439Nonehttps://github.com/mooowu/cve-2025-55182-pocPOC Details
440CVE-2025-55182漏洞检测工具https://github.com/Faithtiannn/CVE-2025-55182POC Details
441React2Shell is a high-performance vulnerability scanner written in Go, specifically designed to detect Server-Side Remote Code Execution (RCE) vulnerabilities in Next.js applications (CVE-2025-55182 & CVE-2025-66478).https://github.com/termireum/react2shellPOC Details
442Remote code execution for React Server Components 19.0.0 - 19.2.0https://github.com/Least-Significant-Bit/CVE-2025-55182POC Details
443Nonehttps://github.com/faisha1311/React2Shell-CVE-2025-55182-TryHackMePOC Details
444RSC Detect CVE 2025 55182https://github.com/fBUZk2BH/RSC-Detect-CVE-2025-55182POC Details
445CVE-2025-55182https://github.com/shen771/Blackash-CVE-2025-55182POC Details
446Nonehttps://github.com/greenheadHQ/CVE-2025-55182POC Details
447Play with react2shell in a safe environment!https://github.com/DoobTheGoober/CVE-2025-55182-Test-ServerPOC Details
448Nonehttps://github.com/rahul-securify/React2Shell-CVE-2025-55182POC Details
449Nonehttps://github.com/dbwlsdnr95/CVE-2025-55182POC Details
450RCE exploit PoC for CVE-2025-55182 and CVE-2025-66478 in Next.js and React Server Components with scanner and exploitation tools.https://github.com/jensnesten/React2Shell-PoCPOC Details
451CVE-2025-55182(命令执行、反弹shell、注入内存马)https://github.com/BBD-YZZ/CVE-2025-55182POC Details
452Nonehttps://github.com/Vladjrfhfg/React-site-CVE-2025-55182POC Details
453CVE-2025-55182 React Server Components Remote Code Execution Exploit Labhttps://github.com/Namsom007/CVE-2025-55182-ExploitPOC Details
454CVE-2025-55182https://github.com/MemerGamer/CVE-2025-55182POC Details
455Nonehttps://github.com/Sairbo/Unihackers---CVE-2025-55182-POC Details
456This is a security exploit tool targeting CVE-2025-55182. It exploits a Remote Code Execution (RCE) vulnerability in React Server Componentshttps://github.com/AsadAhmad-1337/React-2-ShellPOC Details
457Nonehttps://github.com/deepankarkumar1/CVE-2025-55182_Vulnerable-ApplicationPOC Details
458React2shell exploit (CVE-2025-55182+CVE-2025-66478) https://github.com/wnaspy/CVE-2025-55182POC Details
459[우리 FISA] 기술 세미나 우승 - 클라우드 서비스 개발 6기 3팀 - React2Shell (CVE-2025-55182) 분석 및 연구https://github.com/woorifisa-service-dev-6th/tech-seminar-React2ShellPOC Details
460A Firefox extension for detecting React2Shell vulnerabilities (CVE-2025-55182 & CVE-2025-66478) in web applications.https://github.com/MuhammadUwais/React2ShellPOC Details
461Nonehttps://github.com/Evillm/CVE-2025-55182-PoCPOC Details
462An exploitation tool for the Next.js vulnerability CVE-2025-55182 that allows remote command execution through a poisoning prototype in React Server Components.https://github.com/BrianLopezM99/react2shell-CVE-2025-55182POC Details
463Nonehttps://github.com/George0Papasotiriou/CVE-2025-55182-React2Shell-CVSS-10.0-POC Details
464RCE on Next 16.0.6https://github.com/atiilla/CVE-2025-55182POC Details
465React2Shell (CVE-2025-55182) POChttps://github.com/snipevx/React2Shell-POCPOC Details
466Nonehttps://github.com/BIG02-bot/React2Shell-CVE-2025-55182-An-lise-T-cnicaPOC Details
467针对 Next.js 原型污染漏洞 (CVE-2025-55182) 的高效批量检测工具。https://github.com/Wyl-cmd/CVE-2025-55182POC Details
468Server Next.js old version in dockerhttps://github.com/DeDnY/CVE-2025-55182-in-dockerPOC Details
469Interactive shell client for React Server Components RCE exploitation via __proto__ pollution (CVE-2025-55182)https://github.com/H4R335HR/reactshellPOC Details
470CVE-2025-55182https://github.com/zaryouhashraf/CVE-2025-55182POC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2025-55182

登录查看更多情报信息。

IV. Related Vulnerabilities

Same product: react-server-dom-webpack
Same vendor: Meta

V. Comments for CVE-2025-55182

Anonymous User
2026-01-15 06:09:46

Zaproxy alias impedit expedita quisquam pariatur exercitationem. Nemo rerum eveniet dolores rem quia dignissimos.

Leave a comment