Category: Hacker Lab

On December 3, 2025, the official React team published a security advisory revealing a critical unauthenticated remote code execution (RCE) vulnerability in React Server Components (RSC). This vulnerability, tracked as CVE-2025-55182 (also referred to as “React2Shell”) bears a CVSS base score of 10.0, the maximum possible, underscoring the severity and urgency for remediation. What Went…