Français
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어

#react2shell résultats de recherche

Aucun résultat pour "#react2shell"
Aucun résultat pour "#react2shell"
Aucun résultat pour "#react2shell"
netclouts's profile picture. ????????????????Public Profile???????????????????????
NIGERIA 🇳🇬
 @netclouts
45 min

My simple #CVE-2025-55182 #React2Shell scripts that bypass 403 always

netclouts's tweet image. My simple #CVE-2025-55182 #React2Shell scripts that bypass 403 always
0
0
0
0
34
Jutsu0xdfir_mal's profile picture. #ThreatHunting / #BlueTeam engineer. I'm just looking for traces in the logs. Reading and retweeting cool stuff. MITRE ATT&CK Defender:CTI,SOCAsses,AE,PTM,THDE.
0xdfir-jutsu-mal
 @Jutsu0xdfir_mal
24 h

🚨 WARNING: Fake CVE-2025-55182 (React2Shell) scanner contains MALWARE github.com/niha0wa/React2… Hidden payload in code: → mshta.exe https://py-installer[.]cc Targets security researchers hunting this vuln. Always read source before running any "security tool"! #React2Shell

Jutsu0xdfir_mal's tweet image. 🚨 WARNING: Fake CVE-2025-55182 (React2Shell) scanner contains MALWARE github.com/niha0wa/React2… Hidden payload in code: → mshta.exe https://py-installer[.]cc Targets security researchers hunting this vuln. Always read source before running any "security tool"! #React2Shell
6
38
184
62
25K
pyn3rd's profile picture. Security Researcher. Over 10 years in cloud WAF engineering. Focused on cloud security. Speaker at Black Hat and CanSecWest.
pyn3rd
@pyn3rd
15 h

#CVE-2025-55182 #React2Shell Let me walk you through the technical path of the WAF bypass. When a request is sent as multipart/form-data, Next.js hands the raw body stream to Busboy. The bypass comes from Busboy’s charset logic: it cleanly accepts UTF‑16LE (and legacy UCS‑2) and…

pyn3rd's tweet image. #CVE-2025-55182 #React2Shell Let me walk you through the technical path of the WAF bypass. When a request is sent as multipart/form-data, Next.js hands the raw body stream to Busboy. The bypass comes from Busboy’s charset logic: it cleanly accepts UTF‑16LE (and legacy UCS‑2) and…
pyn3rd's tweet image. #CVE-2025-55182 #React2Shell Let me walk you through the technical path of the WAF bypass. When a request is sent as multipart/form-data, Next.js hands the raw body stream to Busboy. The bypass comes from Busboy’s charset logic: it cleanly accepts UTF‑16LE (and legacy UCS‑2) and…
pyn3rd's tweet image. #CVE-2025-55182 #React2Shell Let me walk you through the technical path of the WAF bypass. When a request is sent as multipart/form-data, Next.js hands the raw body stream to Busboy. The bypass comes from Busboy’s charset logic: it cleanly accepts UTF‑16LE (and legacy UCS‑2) and…
pyn3rd's tweet image. #CVE-2025-55182 #React2Shell Let me walk you through the technical path of the WAF bypass. When a request is sent as multipart/form-data, Next.js hands the raw body stream to Busboy. The bypass comes from Busboy’s charset logic: it cleanly accepts UTF‑16LE (and legacy UCS‑2) and…
7
76
367
232
17K
CriminalIP_JP's profile picture. Criminal IPは総合的なAI基盤 脅威インテリジェンス検索エンジンです。 見えぬ脅威まで、しっかり検知!
Criminal IP Japan
@CriminalIP_JP
27 min

📌Critical #React2Shell 脆弱性(CVE-2025-55182, CVSS 10.0)分析公開​ RSCの逆シリアル化欠陥により、認証なしでRCEが可能になるReact2Shell攻撃が報告され、CISAのKEVリストにも追加されました。…

CriminalIP_JP's tweet image. 📌Critical #React2Shell 脆弱性(CVE-2025-55182, CVSS 10.0)分析公開​ RSCの逆シリアル化欠陥により、認証なしでRCEが可能になるReact2Shell攻撃が報告され、CISAのKEVリストにも追加されました。…
0
0
1
0
58
D0n9D0n9's profile picture. 🧑‍💻 Security Engineer 🛸 Bug Hunter 😎 SoloDev , 👀 Web3 / AI, Maybe? 🚩 CTFer . 📍 in CN ( and, As you can see, Emoji fan 😄
D0n9
 @D0n9D0n9
8 déc.

The React2shell bypass technique leverages various features of JSON and JavaScript, and the Flight Protocol can also be utilized for obfuscation. In Figure 3, which demonstrates bypassing a certain WAF, can you identify how many tricks are used? #React2Shell #CVE-2025-55182

D0n9D0n9's tweet image. The React2shell bypass technique leverages various features of JSON and JavaScript, and the Flight Protocol can also be utilized for obfuscation. In Figure 3, which demonstrates bypassing a certain WAF, can you identify how many tricks are used? #React2Shell #CVE-2025-55182
D0n9D0n9's tweet image. The React2shell bypass technique leverages various features of JSON and JavaScript, and the Flight Protocol can also be utilized for obfuscation. In Figure 3, which demonstrates bypassing a certain WAF, can you identify how many tricks are used? #React2Shell #CVE-2025-55182
D0n9D0n9's tweet image. The React2shell bypass technique leverages various features of JSON and JavaScript, and the Flight Protocol can also be utilized for obfuscation. In Figure 3, which demonstrates bypassing a certain WAF, can you identify how many tricks are used? #React2Shell #CVE-2025-55182
2
1
5
2
2K
phithon_xg's profile picture. @ShopeeSG security team now, Chaitin Tech previously. Opinions are my own.
Phith0n
 @phithon_xg
5 déc.

try this WAF bypass trick for rsc&&next.js CVE-2025-55182 All fields can use utf16le charset #React2Shell

phithon_xg's tweet image. try this WAF bypass trick for rsc&&next.js CVE-2025-55182 All fields can use utf16le charset #React2Shell
5
71
481
304
41K
mark_443_'s profile picture. Security researchers || Bug Hunter || https://t.co/nuKXlAxTT7 ||
mark🇮🇳
 @mark_443_
7 déc.

On vdp program I hope no one has reported this before.😄 #React2Shell #BugBounty #bugbountytips #bug

mark_443_'s tweet image. On vdp program I hope no one has reported this before.😄 #React2Shell #BugBounty #bugbountytips #bug
0
0
4
0
2K
abuse_ch's profile picture. Fighting malware and botnets
abuse.ch
@abuse_ch
3 h

Exploitation of recent React RCE vul (CVE-2025-55182 - #React2Shell) leading to #Mirai infection ⤵️ Botnet Mirai C2 domains 📡: effeminate.fuckphillipthegerman .ru trap.fuckphillipthegerman .ru tranny.fuckphillipthegerman .ru Botnet Mirai C2 servers , all hosted at FORTIS 🇷🇺:…

abuse_ch's tweet image. Exploitation of recent React RCE vul (CVE-2025-55182 - #React2Shell) leading to #Mirai infection ⤵️ Botnet Mirai C2 domains 📡: effeminate.fuckphillipthegerman .ru trap.fuckphillipthegerman .ru tranny.fuckphillipthegerman .ru Botnet Mirai C2 servers , all hosted at FORTIS 🇷🇺:…
0
4
10
3
1K
tnirmalz's profile picture. Wannabe sth.. Never failed to fail. OSCP, CRTP, CRTE Tweets are not mine; they belong to my cat ¯\_(ツ)_/¯
mpz
 @tnirmalz
5 déc.

May the Bounty Gods be with you 😊 CVE-2025-55182 😊 #React2Shell #BugBounty

tnirmalz's tweet image. May the Bounty Gods be with you 😊 CVE-2025-55182 😊 #React2Shell #BugBounty
0
1
9
2
2K
CriminalIP_KR's profile picture. Criminal IP는 웹기반의 종합 사이버 위협 인텔리전스 검색엔진입니다. Search for Anything, Secure Your Everything.
Criminal IP Korea
@CriminalIP_KR
57 min

📌#React2Shell 취약점 급증 (CVE-2025-55182, CVSS 10.0)​ RSC 역직렬화 취약점으로 인증 없이 RCE가 가능한 React2Shell 공격이 보고되었고, CISA KEV에 등록되었습니다. React 관련 패키지 업데이트 및 프레임워크별 패치 여부 확인이 필요합니다.​ 🔍 아래 쿼리로 한국 지역의 RSC 활성 서버를…

CriminalIP_KR's tweet image. 📌#React2Shell 취약점 급증 (CVE-2025-55182, CVSS 10.0)​ RSC 역직렬화 취약점으로 인증 없이 RCE가 가능한 React2Shell 공격이 보고되었고, CISA KEV에 등록되었습니다. React 관련 패키지 업데이트 및 프레임워크별 패치 여부 확인이 필요합니다.​ 🔍 아래 쿼리로 한국 지역의 RSC 활성 서버를…
0
1
0
0
47
imraax's profile picture. Automotive/IoT Security Researcher
raax
 @imraax
4 déc.

nobody care about it? #React2Shell

imraax's tweet image. nobody care about it? #React2Shell
0
1
2
0
2K
PakCyberbot's profile picture. (T³) Technical Thinking Tinkerer
Pak Cyberbot
 @PakCyberbot
23 h

After #React2Shell CVE-2025-55182,CVE-2025-66478

PakCyberbot's tweet image. After #React2Shell CVE-2025-55182,CVE-2025-66478
0
0
3
0
294
YungBinary's profile picture. Malware Research @eSentire
YungBinary
@YungBinary
8 déc.

TRU is tracking active exploitation of #React2Shell and released an advisory with observables/indicators. Observed activity includes system reconnaissance and attempts to exfiltrate AWS credentials. esentire.com/security-advis…

YungBinary's tweet image. TRU is tracking active exploitation of #React2Shell and released an advisory with observables/indicators. Observed activity includes system reconnaissance and attempts to exfiltrate AWS credentials. esentire.com/security-advis…
YungBinary's tweet image. TRU is tracking active exploitation of #React2Shell and released an advisory with observables/indicators. Observed activity includes system reconnaissance and attempts to exfiltrate AWS credentials. esentire.com/security-advis…
1
2
41
14
3K
jctommasi's profile picture. 🥷Security Researcher at https://t.co/AF6AUdIqk6 // 👨🏻‍💻Back-End & API Developer // ✈️ Student Pilot
Juan Cruz Tommasi
 @jctommasi
4 déc.

Built a vulnerable React/Next.js lab for testing the #React2Shell bugs (CVE-2025-55182 & CVE-2025-66478). Everything ships in Docker containers.. use it 4fun github.com/jctommasi/reac…

jctommasi's tweet image. Built a vulnerable React/Next.js lab for testing the #React2Shell bugs (CVE-2025-55182 & CVE-2025-66478). Everything ships in Docker containers.. use it 4fun github.com/jctommasi/reac…
1
3
15
8
3K
pdnuclei's profile picture. Nuclei uses a vast templating library to scan applications, cloud infrastructure, and networks to find and remediate vulnerabilities.
Nuclei by ProjectDiscovery
@pdnuclei
6 déc.

Scanning for CVE-2025-55182 using @pdnuclei 🚨 If you're running Next.js / React, scan your apps now. Nuclei Template - cloud.projectdiscovery.io/library/CVE-20… Vulnerability Advisory - react.dev/blog/2025/12/0… #nextjs #cybersecurity #react2shell

pdnuclei's tweet image. Scanning for CVE-2025-55182 using @pdnuclei 🚨 If you're running Next.js / React, scan your apps now. Nuclei Template - cloud.projectdiscovery.io/library/CVE-20… Vulnerability Advisory - react.dev/blog/2025/12/0… #nextjs #cybersecurity #react2shell
2
77
412
298
23K

Something went wrong.


Something went wrong.


United States Trends