Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability

December 5, 2025

Two hacking groups with ties to China have been observed weaponizing the newly disclosed security flaw in React Server Components (RSC) within hours of it becoming public knowledge.
The vulnerability in question is CVE-2025-55182 (CVSS score: 10.0), aka React2Shell, which allows unauthenticated remote code execution. It has been addressed in React versions 19.0.1, 19.1.2, and 19.2.1.
According

Categories

Blog

Share

Leave a Reply Cancel reply

Recent Post

Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks

6 December 2025

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

6 December 2025

Critical XXE Bug CVE-2025-66516 (CVSS 10.0) Hits Apache Tika, Requires Urgent Patch

5 December 2025

Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails

5 December 2025

Like The article?

We have a lot more just for you! Lets join us now

Related post

Continue reading

Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks

No Comments

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

No Comments

Critical XXE Bug CVE-2025-66516 (CVSS 10.0) Hits Apache Tika, Requires Urgent Patch

No Comments

Have your assets been compromised by fraud or theft?

Speak to a Expert Now!