{"version":"1.0","provider_name":"LocateRisk","provider_url":"https:\/\/locaterisk.com\/en","title":"\u201eReact2Shell\u201c: Kritische Sicherheitsl\u00fccke in React & Next.js (CVE-2025-55182 \/ CVE-2025-66478) | LocateRisk","type":"rich","width":600,"height":338,"html":"<blockquote class=\"wp-embedded-content\" data-secret=\"j7se2Jr55A\"><a href=\"https:\/\/locaterisk.com\/en\/react2shell-cve-2025-55182\/\">\u201eReact2Shell\u201c: Critical vulnerability in React &amp; Next.js (CVE-2025-55182 \/ CVE-2025-66478)<\/a><\/blockquote><iframe sandbox=\"allow-scripts\" security=\"restricted\" src=\"https:\/\/locaterisk.com\/en\/react2shell-cve-2025-55182\/embed\/#?secret=j7se2Jr55A\" width=\"600\" height=\"338\" title=\"\u201cReact2Shell: Critical security vulnerability in React &amp; Next.js (CVE-2025-55182 \/ CVE-2025-66478)\u201e \u2014 LocateRisk\" data-secret=\"j7se2Jr55A\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\" class=\"wp-embedded-content\"><\/iframe><script type=\"text\/javascript\">\n\/* <![CDATA[ *\/\n\/*! This file is auto-generated *\/\n!function(d,l){\"use strict\";l.querySelector&&d.addEventListener&&\"undefined\"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!\/[^a-zA-Z0-9]\/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret=\"'+t.secret+'\"]'),o=l.querySelectorAll('blockquote[data-secret=\"'+t.secret+'\"]'),c=new RegExp(\"^https?:$\",\"i\"),i=0;i<o.length;i++)o[i].style.display=\"none\";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute(\"style\"),\"height\"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):\"link\"===t.message&&(r=new URL(s.getAttribute(\"src\")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener(\"message\",d.wp.receiveEmbedMessage,!1),l.addEventListener(\"DOMContentLoaded\",function(){for(var e,t,s=l.querySelectorAll(\"iframe.wp-embedded-content\"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute(\"data-secret\"))||(t=Math.random().toString(36).substring(2,12),e.src+=\"#?secret=\"+t,e.setAttribute(\"data-secret\",t)),e.contentWindow.postMessage({message:\"ready\",secret:t},\"*\")},!1)))}(window,document);\n\/* ]]> *\/\n<\/script>","thumbnail_url":"https:\/\/locaterisk.com\/wp-content\/uploads\/2025\/12\/code-1839406_1920.jpg","thumbnail_width":1920,"thumbnail_height":1282,"description":"\u201eReact2Shell\u201c: Kritische Sicherheitsl\u00fccke in React &amp; Next.js (CVE-2025-55182 \/ CVE-2025-66478) Am 3. Dezember 2025 wurde eine kritische Schwachstelle in den React Server Components und dem darauf aufbauenden Next.js Framework ver\u00f6ffentlicht. Die Sicherheitsl\u00fccke erm\u00f6glicht eine Remote Code Execution (RCE), also das Ausf\u00fchren beliebigen Codes auf betroffenen Servern, und betrifft potenziell tausende Webanwendungen weltweit. Besonders gef\u00e4hrlich: Die [&hellip;]"}