Browsing Tag
Next.js
3 posts
RondoDox Botnet is Using React2Shell to Hijack Thousands of Unpatched Devices
RondoDox hackers exploit the React2Shell flaw in Next.js to target 90,000+ devices, including routers, smart cameras, and small business websites.
Critical ‘React2Shell’ Vulnerability (CVE-2025-55182) is Being Actively Exploited
React2Shell, a critical, max-severity flaw (CVE-2025-55182) allows unauthenticated RCE in React and Next.js. Security researchers confirm active exploitation. Update immediately!
Next.js Middleware Flaw Lets Attackers Bypass Authorization
Researchers have uncovered a critical vulnerability (CVE-2025-29927) in Next.js middleware, allowing authorization bypass. Learn about the exploit and fixes.