As exploitation activity against CVE-2025-55182, researchers are finding some exploits contain bypasses for Web application firewall (WAF) rules.
The attack chain centres on a flaw dubbed React2Shell, tracked as CVE-2025-55182, which affects certain configurations of ...
Half of the internet-facing systems vulnerable to a fast-moving React remote code execution flaw remain unpatched, even as exploitation has exploded into more than a dozen active attack clusters ...
Security firms have seen cryptocurrency miners, Linux backdoors, botnet malware, and post-exploitation implants in ...
The critical React2Shell flaw actively exploit crypto miners, backdoors and advanced malware globally, urging for an ...
The Chinese are not the only ones exploiting React2Shell, a maximum-severity vulnerability that was recently discovered in ...
North Korea-linked attackers exploit CVE-2025-55182 to deploy EtherRAT, a smart-contract-based RAT with multi-stage ...
Sysdig has found sophisticated malicious campaigns exploiting React2Shell that delivered EtherRAT and suggested North Korean ...
A new malware implant called EtherRAT, deployed in a recent React2Shell attack, runs five separate Linux persistence ...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday formally added a critical security flaw impacting ...
It has been seen spreading cryptojacking malware and in attempts to steal cloud credentials from compromised machines.
A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback