{"version":"1.0","provider_name":"LocateRisk","provider_url":"https:\/\/locaterisk.com\/fr","title":"\u201eReact2Shell\u201c: Kritische Sicherheitsl\u00fccke in React & Next.js (CVE-2025-55182 \/ CVE-2025-66478) | LocateRisk","type":"rich","width":600,"height":338,"html":"<blockquote class=\"wp-embedded-content\" data-secret=\"iIOXHufb83\"><a href=\"https:\/\/locaterisk.com\/fr\/react2shell-cve-2025-55182\/\">\u201eReact2Shell\u201c : vuln\u00e9rabilit\u00e9 critique dans React &amp; Next.js (CVE-2025-55182 \/ CVE-2025-66478)<\/a><\/blockquote><iframe sandbox=\"allow-scripts\" security=\"restricted\" src=\"https:\/\/locaterisk.com\/fr\/react2shell-cve-2025-55182\/embed\/#?secret=iIOXHufb83\" width=\"600\" height=\"338\" title=\"\u00ab React2Shell \u201e : faille de s\u00e9curit\u00e9 critique dans React &amp; Next.js (CVE-2025-55182 \/ CVE-2025-66478) \u201c \u2014 LocateRisk\" data-secret=\"iIOXHufb83\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\" class=\"wp-embedded-content\"><\/iframe><script type=\"text\/javascript\">\n\/* <![CDATA[ *\/\n\/*! This file is auto-generated *\/\n!function(d,l){\"use strict\";l.querySelector&&d.addEventListener&&\"undefined\"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!\/[^a-zA-Z0-9]\/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret=\"'+t.secret+'\"]'),o=l.querySelectorAll('blockquote[data-secret=\"'+t.secret+'\"]'),c=new RegExp(\"^https?:$\",\"i\"),i=0;i<o.length;i++)o[i].style.display=\"none\";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute(\"style\"),\"height\"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):\"link\"===t.message&&(r=new URL(s.getAttribute(\"src\")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener(\"message\",d.wp.receiveEmbedMessage,!1),l.addEventListener(\"DOMContentLoaded\",function(){for(var e,t,s=l.querySelectorAll(\"iframe.wp-embedded-content\"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute(\"data-secret\"))||(t=Math.random().toString(36).substring(2,12),e.src+=\"#?secret=\"+t,e.setAttribute(\"data-secret\",t)),e.contentWindow.postMessage({message:\"ready\",secret:t},\"*\")},!1)))}(window,document);\n\/* ]]> *\/\n<\/script>","thumbnail_url":"https:\/\/locaterisk.com\/wp-content\/uploads\/2025\/12\/code-1839406_1920.jpg","thumbnail_width":1920,"thumbnail_height":1282,"description":"\u201eReact2Shell\u201c: Kritische Sicherheitsl\u00fccke in React &amp; Next.js (CVE-2025-55182 \/ CVE-2025-66478) Am 3. Dezember 2025 wurde eine kritische Schwachstelle in den React Server Components und dem darauf aufbauenden Next.js Framework ver\u00f6ffentlicht. Die Sicherheitsl\u00fccke erm\u00f6glicht eine Remote Code Execution (RCE), also das Ausf\u00fchren beliebigen Codes auf betroffenen Servern, und betrifft potenziell tausende Webanwendungen weltweit. Besonders gef\u00e4hrlich: Die [&hellip;]"}