Recent Advisories

Severity ID Title Vendor Product Date Type
NONE B3099218-17CC-

-react2Shell_B3099218-17CC-5685-9259-3F486E2D8AAF

No description provided...

N/A N/A GITHUBEXPLOIT
HIGH 7.8 8C8AAD22-6DF2-

Exploit for Path Traversal in 7-Zip_8C8AAD22-6DF2-5DD0-B15C-74A0CD2A8628

7-ZiProwler CVE-2025-11001 Overview Result of my quick research on CVE-2025-11001 are presented in this repo. Exploit is written in python and astr...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.8 184C78DE-1DF5-

Exploit for Improper Restriction of XML External Entity Reference in Geoserver_184C78DE-1DF5-53A2-8049-589E479FD4BF

CVE-2025-58360: GeoServer XXE Lab Unauthenticated XML External Entity XXE Injection in GeoServer OWS/WMS Services CVSS: 9.8 CRITICAL Affected: SLDH...

N/A N/A GITHUBEXPLOIT
NONE 9A8602EF-40C7-

Exploit for CVE-2025-66478_9A8602EF-40C7-5247-89FC-10F3DD5A444E

React2Shell POC https://nextjs.org/blog/CVE-2025-66478 테스트용 Docker로 배포 bash docker compose up -d POC poc.mjs - 명령 실행 공격 bash 기본 서버...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.8 69C833E7-B11A-

Exploit for Improper Restriction of XML External Entity Reference in Geoserver_69C833E7-B11A-585E-BD0E-6ED744FA3731

CVE-ID How does this detection method work? How do I run this script? 1. Download and install Nuclei. 2. Clone this repostory to your local system....

N/A N/A GITHUBEXPLOIT
CRITICAL 10 F43285B2-13FE-

Exploit for Deserialization of Untrusted Data in Facebook React_F43285B2-13FE-5FF3-AF4C-FD7D5630CC58

React2Shell CVE-2025-55182 A proof-of-concept exploit demonstrating a remote code execution vulnerability in Next.js applications through prototype...

N/A N/A GITHUBEXPLOIT
NONE 701E1B7B-F8CA-

vuln_XSS_web_701E1B7B-F8CA-5C99-8D75-CE2D81FA12BB

Vulnerable Websites for XSS Testing Đây là 4 website mẫu, mỗi website chứa một loại lỗ hổng XSS cụ thể để phục vụ mục đích testing/học tập. ⚠️ Cảnh...

N/A N/A GITHUBEXPLOIT
CRITICAL 10 5104B19B-AFFE-

Exploit for Deserialization of Untrusted Data in Facebook React_5104B19B-AFFE-5B86-9806-FE38CCA80090

react2shell-scanner A command-line tool for detecting CVE-2025-55182 and CVE-2025-66478 in Next.js applications using React Server Components. For ...

N/A N/A GITHUBEXPLOIT
MEDIUM 5.3 B9A8F538-69E8-

Exploit for CVE-2025-55183_B9A8F538-69E8-5409-AB4E-5F4995AB68DF

CVE-2025-55183 - Next.js RSC Server Function Source Code Disclosure A source code disclosure vulnerability in Next.js React Server Components RSC. ...

N/A N/A GITHUBEXPLOIT
CRITICAL 10 4EB42032-8EFB-

Exploit for Deserialization of Untrusted Data in Facebook React_4EB42032-8EFB-5A8B-8102-9BF59278396E

React2Shell CVE-2025-55182 PoC A Proof-of-Concept exploit for CVE-2025-55182, also known as React2Shell - a critical remote code execution vulnerab...

N/A N/A GITHUBEXPLOIT