CVE-2025-55182: Frequently Asked Questions About React2Shell: React Server Components Remote Code Execution Vulnerability
www.tenable.com
React2Shell: A critical React flaw allowing unauthenticated RCE. Impacts include Next.js, React Router, and apps using Server Components.

I got an email from Vercel urging to upgrade Next.js based project 3 days ago. POC was published 2 days ago. Today I’ve checked my logs and I could already see attack attempts.

  • Mikina@programming.dev
    1·
    2 months ago

    Fuck, Element for Matrix is apparently build on React, and I was updating like 4 days ago after few months.

    Well, time to update again, I hope it’s fine. Never really learned how to properly compromise-check your server.

    • Mikina@programming.dev
      4·
      2 months ago

      Well, Element seems to still be running at the unupdated version even after update, so I’m just shutting the server down.

      I’m bummed that it took me 5 days to learn about it, does anyone have some tips how to get early warnings for techs you’re using? I’m guessing there’s a way with npm.

      Also, anyone has some tips how to properly compromise-check your server? I’m guessing there are logs to check for compromise, and audit your startup scripts for persistence? Any tools that could help with that?