React2Shell: Serious RCE Vulnerability Threatening the Latest Web Frameworks (CVE-2025-55182)
Overview In December 2025, a serious security vulnerability named Reach2Shell was disclosed, shaking the web development ecosystem. This vulnerability affects applications using React Server Components and the Flight protocol, allowing threat actors to execute arbitrary code on the server with a single HTTP request. It has been given a Common
React Server Component Security Update Advisory
Overview We have released a security update to address a vulnerability in React Server Component (RSC). Users of affected products are advised to update to the latest version. Affected Products CVE-2025-55184, CVE-2025-67779 react-server-dom-webpack, react-server-dom-parcel, react-server-dom-turbopack Versions: 19.0.0, 19.0.1, 19.0.2react-server-dom-webpack, react-server-dom-parcel, react-server-dom-turbopack versions: 19.1.0, 19.1.1, 19.1.2, 19.1.3react-server-dom-webpack, react-server-dom-parcel, react-server-dom-turbopack Version: 19.2.0,
Threat Trend Report on Deep Web & Dark Web – Ransomware Groups & Cybercrime Forums and Markets of February 2024
Notice This brief trends report on the Deep Web & Dark Web in February 2024 covers ransomware, forums, black markets, and threat actors. Note that some of the content may not be verifiable. Major issues 1) Ransomwares (1) ALPHV/BlackCat In late February, the U.S. Federal Bureau of Investigation (FBI)
