Share
## https://sploitus.com/exploit?id=74138780-920C-596D-B00E-28709D031337
# ๐ React2Shell Dork Scanner
---
## ๐จ Tentang Kerentanan
**React2Shell** adalah kerentanan **Remote Code Execution (RCE)** kritikal yang mempengaruhi:
| Target | Versi Vulnerable |
| ----------------------------- | ------------------------------ |
| โ๏ธ react-server-dom-webpack | 19.0.0, 19.1.0, 19.1.1, 19.2.0 |
| โ๏ธ react-server-dom-turbopack | 19.0.0, 19.1.0, 19.1.1, 19.2.0 |
| โ๏ธ react-server-dom-parcel | 19.1.0, 19.1.1, 19.2.0 |
| ๐บ Next.js | 15.0.0-15.0.4, 16.0.0-16.0.6 |
**โ ๏ธ CVSS Score: 10.0 (CRITICAL)** - Unauthenticated RCE!
---
## โจ Features
| Feature | Description |
| ---------------------- | --------------------------------------------- |
| ๐ **Google Dorking** | Cari target Next.js/React otomatis via Google |
| ๐พ **Save Targets** | Simpan hasil pencarian ke `targets.txt` |
| ๐ฏ **Vuln Scanning** | Test vulnerability pada setiap target |
| ๐ **Vuln Report** | Simpan target vulnerable ke `vulnerable.txt` |
| โก **Multi-threading** | Scan cepat dengan concurrent requests |
| ๐ก๏ธ **Safe Detection** | Side-channel detection (tanpa eksploitasi) |
---
## ๐ฆ Installation
```bash
# Clone repository
git clone https://github.com/yourusername/react2shell-dork-scanner.git
cd react2shell-dork-scanner
# Install dependencies
pip install -r requirements.txt
```
---
## ๐ Quick Start
### 1๏ธโฃ Test Single URL
```bash
python3 dork_scanner.py --test-url https://target.com
```
### 2๏ธโฃ Google Dork Search
```bash
# Custom dork
python3 dork_scanner.py --dork "inurl:/_next site:example.com"
# Template bawaan
python3 dork_scanner.py --template nextjs --limit 50
```
### 3๏ธโฃ Scan dari File
```bash
python3 dork_scanner.py --scan-file targets.txt
```
### 4๏ธโฃ Full Auto (Dork + Scan)
```bash
python3 dork_scanner.py --dork "inurl:/_next" --auto-scan
```
---
## ๐ CLI Options
```
Google Dork Options:
--dork, -d Custom Google dork query
--template, -t Template: nextjs, react, rsc
--limit, -l Max results (default: 50)
--delay Delay antar request (default: 3.0s)
Scanning Options:
--scan-file, -f Scan dari file
--test-url, -u Test single URL
--auto-scan Auto scan setelah dorking
--threads Concurrent threads (default: 5)
--timeout Request timeout (default: 10s)
Output Options:
--output-targets File untuk targets (default: targets.txt)
--output-vuln File untuk vulns (default: vulnerable.txt)
```
---
## ๐ฏ Dork Templates
| Template | Dorks |
| -------- | ------------------------------------------------- |
| `nextjs` | `inurl:"/_next/static"`, `intext:"__NEXT_DATA__"` |
| `react` | `inurl:"/static/js/main" intext:"react"` |
| `rsc` | `inurl:"/api/" intext:"server-action"` |
---
## ๐ Output Files
| File | Isi |
| ------------------- | -------------------------- |
| ๐ `targets.txt` | Semua URL dari Google dork |
| ๐ด `vulnerable.txt` | URL yang vulnerable |
---
## โ ๏ธ Disclaimer
> **โ ๏ธ LEGAL WARNING**
>
> Tool ini **HANYA** untuk security testing pada target yang memiliki **izin resmi**.
> Penggunaan tanpa otorisasi adalah **ILEGAL**.
---
## ๐ References
- ๐ [CVE-2025-55182](https://nvd.nist.gov/vuln/detail/CVE-2025-55182)
- ๐ [CVE-2025-66478](https://nvd.nist.gov/vuln/detail/CVE-2025-66478)
- ๐ฌ [Assetnote Research](https://www.assetnote.io/resources/research)
---
๐ Stay Secure. Scan Responsibly. ๐