Share
## https://sploitus.com/exploit?id=5FC29DEC-8E9E-53DA-8099-1CC50517BA1F
# CVE-2025-55184
React Server Components 19.0.0 to 19.2.1 including react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack contain an insecure deserialization vulnerability caused by unsafe payload deserialization in Server Function endpoints, letting unauthenticated attackers cause denial of service by hanging the server process.