العربية
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어

#react2shell نتائج البحث

phithon_xg's profile picture. @ShopeeSG security team now, Chaitin Tech previously. Opinions are my own.
Phith0n
 @phithon_xg
٥ ديسمبرم

try this WAF bypass trick for rsc&&next.js CVE-2025-55182 All fields can use utf16le charset #React2Shell

phithon_xg's tweet image. try this WAF bypass trick for rsc&&next.js CVE-2025-55182 All fields can use utf16le charset #React2Shell
4
63
458
296
35ألف
censysio's profile picture. Censys is the source for real-time Internet intelligence and actionable threat insights for governments, F500 companies, and leading threat intel providers
Censys
@censysio
٥ ديسمبرم

🚨 Censys on #React2Shell (CVE-2025-55182): We observe ~2.15M exposed web services running Next.js or other RSC-based frameworks—mostly in the U.S. and China. Not all are vulnerable, but active exploitation is underway. Patch now. 👉 Full advisory: hubs.ly/Q03X5QFV0

censysio's tweet image. 🚨 Censys on #React2Shell (CVE-2025-55182): We observe ~2.15M exposed web services running Next.js or other RSC-based frameworks—mostly in the U.S. and China. Not all are vulnerable, but active exploitation is underway. Patch now. 👉 Full advisory: hubs.ly/Q03X5QFV0
2
64
214
90
38ألف
an0n_r0's profile picture. CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺
an0n
 @an0n_r0
٧ ديسمبرم

just tested this in-memory backdoor via #React2Shell, this is crazy. github.com/Malayke/Next.j… I don't have time to set up a honeypot right now, but I'm pretty sure it would catch these kind of requests within minutes. :)

an0n_r0's tweet image. just tested this in-memory backdoor via #React2Shell, this is crazy. github.com/Malayke/Next.j… I don't have time to set up a honeypot right now, but I'm pretty sure it would catch these kind of requests within minutes. :)
0
17
98
56
11ألف
imraax's profile picture. Automotive/IoT Security Researcher
raax
 @imraax
٤ ديسمبرم

nobody care about it? #React2Shell

imraax's tweet image. nobody care about it? #React2Shell
0
0
2
0
2ألف
tnirmalz's profile picture. Wannabe sth.. Never failed to fail. OSCP, CRTP, CRTE Tweets are not mine; they belong to my cat ¯\_(ツ)_/¯
mpz
 @tnirmalz
٥ ديسمبرم

May the Bounty Gods be with you 😊 CVE-2025-55182 😊 #React2Shell #BugBounty

tnirmalz's tweet image. May the Bounty Gods be with you 😊 CVE-2025-55182 😊 #React2Shell #BugBounty
0
1
9
2
1ألف
pdnuclei's profile picture. Nuclei uses a vast templating library to scan applications, cloud infrastructure, and networks to find and remediate vulnerabilities.
Nuclei by ProjectDiscovery
@pdnuclei
٦ ديسمبرم

Scanning for CVE-2025-55182 using @pdnuclei 🚨 If you're running Next.js / React, scan your apps now. Nuclei Template - cloud.projectdiscovery.io/library/CVE-20… Vulnerability Advisory - react.dev/blog/2025/12/0… #nextjs #cybersecurity #react2shell

pdnuclei's tweet image. Scanning for CVE-2025-55182 using @pdnuclei 🚨 If you're running Next.js / React, scan your apps now. Nuclei Template - cloud.projectdiscovery.io/library/CVE-20… Vulnerability Advisory - react.dev/blog/2025/12/0… #nextjs #cybersecurity #react2shell
1
52
318
230
16ألف
theCTO's profile picture. creator of email
adam
@theCTO
٦ ديسمبرم

the person who discovered the #react2shell vulnerability should get paid $1m

19
38
1ألف
106
107ألف
albinowax's profile picture. Director of Research at @PortSwigger aka @Burp_Suite. Find my research, tools & contact details at https://t.co/vP6UbGmvl3
James Kettle
@albinowax
٤ ديسمبرم

You can now scan for #react2shell in @Burp_Suite. To enable, install the Extensibility Helper bapp, go to the bambda tab and search for react2shell. Shout-out to @assetnote for sharing a reliable detection technique!

albinowax's tweet image. You can now scan for #react2shell in @Burp_Suite. To enable, install the Extensibility Helper bapp, go to the bambda tab and search for react2shell. Shout-out to @assetnote for sharing a reliable detection technique!
7
102
633
320
38ألف
arshiyaiha's profile picture. Bug Bounty is a game of patience and persistence, and every triage is a victory.
Arshiya
 @arshiyaiha
٦ ديسمبرم

Detecting #React2Shell (CVE-2025-55182), Safe probe for Flight parser error with Curl and without harmful execution. Indicators of vulnerability: ✅ Response Code = 500 ✅ Word "digest" appears in response body #React2Shell #CVE202555182 #BugBounty

arshiyaiha's tweet image. Detecting #React2Shell (CVE-2025-55182), Safe probe for Flight parser error with Curl and without harmful execution. Indicators of vulnerability: ✅ Response Code = 500 ✅ Word "digest" appears in response body #React2Shell #CVE202555182 #BugBounty
5
24
188
161
13ألف
mark_443_'s profile picture. Security researchers || Bug Hunter || https://t.co/nuKXlAxTT7 ||
mark🇮🇳
 @mark_443_
20 س

On vdp program I hope no one has reported this before.😄 #React2Shell #BugBounty #bugbountytips #bug

mark_443_'s tweet image. On vdp program I hope no one has reported this before.😄 #React2Shell #BugBounty #bugbountytips #bug
0
0
2
0
534
broken_link420's profile picture. Internet of Shitz👨‍💻 welcome 2 Cyberia punk🫵 -tequila_ninja🥷 Bug bounty🪲 0xBEEFBABE🍖🥩 DEFCON 34🏴‍☠️💯 🇺🇸USA▪️Croatia🇭🇷 Cali ❤️‍🔥 no bs zone
$~ Hey :D ~$
@broken_link420
٤ ديسمبرم

It's out! Confirmed working RCE POC🥳🥳🤯 #React2Shell gist.github.com/maple3142/48bc…

broken_link420's tweet image. It's out! Confirmed working RCE POC🥳🥳🤯 #React2Shell gist.github.com/maple3142/48bc…
h4x0r_dz's profile picture. Uber Driver
H4x0r.DZ 🇰🇵
@h4x0r_dz
٤ ديسمبرم

CVE-2025-55182 poc is out gist.github.com/maple3142/48bc…

h4x0r_dz's tweet image. CVE-2025-55182 poc is out gist.github.com/maple3142/48bc…
4
34
289
155
52ألف
0
32
269
155
30ألف
0w4ys's profile picture.
z3r0 🇵🇸
 @0w4ys
٤ ديسمبرم

#React2Shell CVE-2025-55182 Passive checker github.com/oways/React2sh… Stay Secure!

0w4ys's tweet image. #React2Shell CVE-2025-55182 Passive checker github.com/oways/React2sh… Stay Secure!
0
1
12
9
3ألف
dimitribest's profile picture. #CTI #Trainer #Speaker Former Senior Director CTI at BlackBerry, Former GReAT team Director in LatAm
Dmitry Bestuzhev
@dimitribest
٧ ديسمبرم

#React2Shell via FOFA. Chile: 4,503 results ( 1,649 unique IP )

dimitribest's tweet image. #React2Shell via FOFA. Chile: 4,503 results ( 1,649 unique IP )
dimitribest's tweet image. #React2Shell via FOFA. Chile: 4,503 results ( 1,649 unique IP )
dimitribest's tweet image. #React2Shell via FOFA. Chile: 4,503 results ( 1,649 unique IP )
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
٦ ديسمبرم

🚩 #React2Shell 🌐📡 → Censys (+270K assets): services.http.response.headers: (key: `Vary` and value.headers: `RSC, Next-Router-State-Tree`) → Shodan (+380K assets): "Vary: RSC, Next-Router-State-Tree"

1ZRR4H's tweet image. 🚩 #React2Shell 🌐📡 → Censys (+270K assets): services.http.response.headers: (key: `Vary` and value.headers: `RSC, Next-Router-State-Tree`) → Shodan (+380K assets): "Vary: RSC, Next-Router-State-Tree"
1ZRR4H's tweet image. 🚩 #React2Shell 🌐📡 → Censys (+270K assets): services.http.response.headers: (key: `Vary` and value.headers: `RSC, Next-Router-State-Tree`) → Shodan (+380K assets): "Vary: RSC, Next-Router-State-Tree"
0
60
355
267
23ألف
0
0
4
2
1ألف
rauchg's profile picture. @vercel CEO
Guillermo Rauch
@rauchg
٤ ديسمبرم

We’ve got confirmation of a working #react2shell POC being shared. We’ve verified Vercel’s Web Application Firewall is successfully blocking this known variant. We are also seeing bad actors attempt exploitation. Upgrading React & frameworks remains a top priority.

9
19
265
29
48ألف
jctommasi's profile picture. 🥷Security Researcher at https://t.co/AF6AUdIqk6 // 👨🏻‍💻Back-End & API Developer // ✈️ Student Pilot
Juan Cruz Tommasi
 @jctommasi
٤ ديسمبرم

Built a vulnerable React/Next.js lab for testing the #React2Shell bugs (CVE-2025-55182 & CVE-2025-66478). Everything ships in Docker containers.. use it 4fun github.com/jctommasi/reac…

jctommasi's tweet image. Built a vulnerable React/Next.js lab for testing the #React2Shell bugs (CVE-2025-55182 & CVE-2025-66478). Everything ships in Docker containers.. use it 4fun github.com/jctommasi/reac…
1
3
15
7
3ألف
Bobby0x01's profile picture. 20 | Rust & Assembly/C • Low-Level Internals • CyberSec • OSCP in progress I build, break, and explain systems. Posting daily: Rust, reversing, rootkits...
Bobby
 @Bobby0x01
1 س

Wow #React2Shell Critical Security Vulnerability in React Server Components CVE-2025-55182 and rated CVSS 10.0 The vulnerability is present in versions 19.0, 19.1.0, 19.1.1, and 19.2.0 of: react-server-dom-webpack react-server-dom-parcel react-server-dom-turbopack

0
0
0
0
45
return89kk's profile picture. Nfsc
Time tells the future NEWS
 @return89kk
3 س

中国黑客利用React2Shell漏洞 Amazon报告称,中共国家关联黑客利用React Server Components漏洞(CVE-2025-55182)攻击数千万网站,漏洞已紧急修复。 #React2Shell #CVE202555182 #中国黑客 #网站安全 #Amazon

return89kk's tweet image. 中国黑客利用React2Shell漏洞 Amazon报告称,中共国家关联黑客利用React Server Components漏洞(CVE-2025-55182)攻击数千万网站,漏洞已紧急修复。 #React2Shell #CVE202555182 #中国黑客 #网站安全 #Amazon
0
0
0
0
87
Timer315's profile picture. Follow milesguo to achieve nfsc Himalaya. Join GETTR in the New Chinese Federation.
Timer🔥🔥🔥
 @Timer315
3 س

中国黑客利用React2Shell漏洞 Amazon报告称,中共国家关联黑客利用React Server Components漏洞(CVE-2025-55182)攻击数千万网站,漏洞已紧急修复。 #React2Shell #CVE202555182 #中国黑客 #网站安全 #Amazon

Timer315's tweet image. 中国黑客利用React2Shell漏洞 Amazon报告称,中共国家关联黑客利用React Server Components漏洞(CVE-2025-55182)攻击数千万网站,漏洞已紧急修复。 #React2Shell #CVE202555182 #中国黑客 #网站安全 #Amazon
0
0
0
0
69
hmier's profile picture. Cyber security engineer. #blueteam This account is for kittens, memes, paintins and rants about my country politics. follow me on hmier bsky & cara.
Helios Mier
 @hmier
7 س

Yo @CrowdStrike , do you have a blog explainig how falcon can defend against #react2shell ?

0
0
0
0
77
Wakedxy1's profile picture. 🛡 Pentester | Bug Hunter | @hackthebox_eu ambassador | OSCP | CRTP | eWPT | CBBH | Youtuber
Wakedxy
 @Wakedxy1
8 س

The speedrun is real on the BB platform 😂 Do you guys ever take a break? #React2Shell

0
0
0
0
256
Strivehawk's profile picture. Empowering businesses with top-tier IT solutions & digital marketing. Your partner for digital transformation. 🌍 #TechForGrowth
Strivehawk
 @Strivehawk
9 س

🚨🧨 React2Shell fallout widens 77k systems exposed Over 77,000 Internet-facing systems remain vulnerable as attackers already breached 30+ orgs across sectors. Patch now. #react2shell #cyberattack #patchnow

Strivehawk's tweet image. 🚨🧨 React2Shell fallout widens 77k systems exposed Over 77,000 Internet-facing systems remain vulnerable as attackers already breached 30+ orgs across sectors. Patch now. #react2shell #cyberattack #patchnow
0
0
0
0
58
TeamDreier's profile picture. Graph based Threat Hunting based on ~1.4mia/day DNS records from SIE Europe, ICANN CZDS, Certstream, urlscan, urlhaus, rapid7 sonar and more.
Gizmo
 @TeamDreier
11 س

#vuln #React2Shell DK - 528 x React Framework + Next.js CVE-2025-55182 CVEE 10.00 (OSINT) 329 x Gensyn testnet

TeamDreier's tweet image. #vuln #React2Shell DK - 528 x React Framework + Next.js CVE-2025-55182 CVEE 10.00 (OSINT) 329 x Gensyn testnet
TeamDreier's tweet image. #vuln #React2Shell DK - 528 x React Framework + Next.js CVE-2025-55182 CVEE 10.00 (OSINT) 329 x Gensyn testnet
0
0
0
0
235
Gioda58704876's profile picture. Freelance #Developer 💻: #Creative, #Website 🚀, #MERN, #Frontend 🗂️, #Backend ⚙️ With 3 years of experience
Gioda
 @Gioda58704876
18 س

For all my FrontEnd buddies, #React2Shell is a vulnerability found this week, make sure to update your #React / #Nextjs packages.

من maple3142
0
0
1
0
178
SanSYS's profile picture. dotnet, Linux, infosec. За научный подход καλημέρα;
Alex P 📛�
 @SanSYS
18 س

Ещё прикол про #cloudflare Правды ради - они большие молодцы, ибо рили сделали стопперы против #React2Shell Однако! Выбранный Action = Managed Challenge (читай каптча) Так что идите в настройки Cloudflare Managed RuleSet, ищите React и меняйте Action на Block

1
0
0
0
147
Savphill's profile picture. Building software & contributing to open source security.
Phill
 @Savphill
20 س

WordPress people worrying about React UIs in plugins/themes etc the React vuln hits React Server Components & Next.js, not typical client side React. Most WP plugins only use React in wp-admin, so they aren’t exposed to that attack vector. #react2shell

0
1
3
0
481
mark_443_'s profile picture. Security researchers || Bug Hunter || https://t.co/nuKXlAxTT7 ||
mark🇮🇳
 @mark_443_
20 س

On vdp program I hope no one has reported this before.😄 #React2Shell #BugBounty #bugbountytips #bug

mark_443_'s tweet image. On vdp program I hope no one has reported this before.😄 #React2Shell #BugBounty #bugbountytips #bug
0
0
2
0
534
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
21 س

Active exploitation of React2Shell flaw lands it on CISA KEV list, linked to Cloudflare outage. Apache Tika RCE, Oracle zero-day breach at Barts Health NHS, rising LockBit activity, and Agentic Wiper hitting Google Drive. #React2Shell #UK #DataBreach ift.tt/R8l73Q5

TweetThreatNews's tweet card. Daily Recap, Active exploitation of the critical React2Shell flaw pushed it onto the CISA KEV list, with Chinese actors and Amazon researchers reporting widespread abuse that even triggered a...
Cybersecurity News | Daily Recap [06 Dec 2025]
المصدر: hendryadrian.com
0
0
2
1
534
Cyber78678's profile picture. Content Creator | Bug bounty Hunter | js, html, css & Little Obsession with #AI & #LLMS Hoping to survive in the age of #Superintelligence. speaks 6 languages
\Ilyas ;)
 @Cyber78678
21 س

"Vercel paid 50k to one researcher so far" to my opinion its a trap to reward one and fix the rest of varitants of all the bypasses as Duplicate don't be foolish enough This reward is for someone for some reasons You know what I mean!!! #React2Shell

0
0
3
0
214
لا توجد نتائج لـ "#react2shell"
لا توجد نتائج لـ "#react2shell"

Something went wrong.


Something went wrong.


United States Trends