New React vulns leak secrets, invite DoS attacks

CVE-2025-55182, the React server-side vulnerability dubbed "React2Shell" disclosed and patched on December 3, allows for ...

Maximum severity React2Shell flaw exploited by North Korean hackers in malware attacks

The Chinese are not the only ones exploiting React2Shell, a maximum-severity vulnerability that was recently discovered in ...