Critical vulnerability in React JS framework has a near 100% chance to be exploited

Researchers have uncovered a critical security flaw that could have catastrophic consequences for web and private cloud ...

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.
Infosecurity Magazine

React.js Hit by Maximum-Severity 'React2Shell' Vulnerability

A critical RCE flaw in React.js, dubbed React2Shell (CVE-2025-55182), has been disclosed with a maximum CVSS score of 10.0, ...
Analytics India Magazine

‘Nasty’ React Vulnerability Affects 39% of Cloud Environments

A CVSS 10 rate critical vulnerability impacts React Server Components in versions 19.0–19.2.0. A patched update has been ...
Cybernews

“Worst case scenario” vulnerability found in React, Next.js

A critical vulnerability has been discovered in React Server Components and frameworks like Next.js, allowing an ...
Business Wire

Clerk Raises $15 million for React Authentication and User Management

SAN FRANCISCO--(BUSINESS WIRE)--Clerk, the drop-in authentication and user management solution for React, today announced a $15 million Series A led by Madrona, with managing director Karan Mehandru ...