Share
## https://sploitus.com/exploit?id=9F5DA2D6-40FA-55B7-8AB0-59F771FB8B6D
# ๐ฅ React2Shell Toolkit - CVE-2025-55182 & CVE-2025-66478

[](https://nvd.nist.gov/vuln/detail/CVE-2025-55182)
[](https://nvd.nist.gov/vuln/detail/CVE-2025-66478)
[](https://www.first.org/cvss/)
**๐จ Critical RCE in React Server Components & Next.js ๐จ**
*Professional Red Team Toolkit for CVE-2025-55182 Detection & Exploitation*
[๐ Features](#-features) โข [โก Quick Start](#-quick-start) โข [๐ Documentation](#-documentation) โข [๐ค Connect](#-connect-with-me)
---
## ๐ฏ About CVE-2025-55182 & CVE-2025-66478
### ๐ What is React2Shell?
**React2Shell** is a **critical unauthenticated Remote Code Execution (RCE)** vulnerability affecting React Server Components (RSC) and Next.js applications.
| CVE ID | Component | CVSS Score | Impact |
|--------|-----------|------------|--------|
| **CVE-2025-55182** | React Server Components | **10.0** ๐ด | Complete Server Takeover |
| **CVE-2025-66478** | Next.js Server Actions | **10.0** ๐ด | Full System Compromise |
### ๐ญ Attack Vector
```javascript
// Attacker sends malicious Flight protocol payload
POST / HTTP/1.1
Next-Action: exploit
Content-Type: multipart/form-data
{"__proto__": "pollution", "then": "gadget_chain"}
โ
Unsafe Deserialization
โ
Prototype Pollution
โ
๐ฅ Remote Code Execution ๐ฅ
```
### ๐ฏ Affected Versions
- **React**: 19.0.0, 19.1.0, 19.1.1, 19.2.0
- **Next.js**: 15.x, 16.x (with App Router)
- **Frameworks**: React Router, Waku, Vite RSC, Parcel, RedwoodSDK
### โ
Patched Versions
- **React**: 19.0.1+, 19.1.2+, 19.2.1+
- **Next.js**: 15.0.5+, 15.1.9+, 15.2.6+, 16.0.7+
---
## ๐ ๏ธ Toolkit Components
This repository contains **4 professional-grade tools** for CVE-2025-55182 detection and exploitation:
### ๐ Nuclei Template
**Advanced Scanner**

โ
5 Payloads
โ
Zero False Positives
โ
Math Validation
โ
Batch Scanning
### ๐ Shodan Scanner
**Target Discovery**

โ
Automated Search
โ
Mass Scanning
โ
50+ Shodan Queries
โ
Interactive Wizard
### ๐ป Bash Exploit
**CLI Framework**

โ
8 Predefined Payloads
โ
Interactive Mode
โ
Multi-Target Support
โ
Cyberpunk UI
### ๐ง Burp Extension
**Manual Testing**

โ
30+ Payloads
โ
Active + Passive Scan
โ
GUI Interface
โ
Collaborator Integration
---
## โก Quick Start
### ๐ฆ Installation
```bash
# Clone the repository
git clone https://github.com/cybertechajju/cve-2025-55182.git
cd cve-2025-55182
# Install Python dependencies
pip install -r requirements.txt
pip install -r exploits/requirements.txt
```
### ๐ Usage Examples
#### 1๏ธโฃ **Nuclei Scanner** (Fastest Detection)
```bash
# Scan single target
nuclei -t nuclei-templates/cve-2025-55182.yaml -u https://target.com
# Scan multiple targets
nuclei -t nuclei-templates/cve-2025-55182.yaml -l targets.txt
```
#### 2๏ธโฃ **Shodan Scanner** (Mass Discovery)
```bash
# Interactive wizard mode
python exploits/shodan_scanner_advanced.py
# Or with API key directly
python exploits/shodan_scanner_advanced.py --api YOUR_SHODAN_API_KEY
```
#### 3๏ธโฃ **Bash Exploit** (Direct Exploitation)
```bash
# Interactive mode
bash exploits/scanner_advanced.sh -i
# Quick exploitation
bash exploits/scanner_advanced.sh -d https://target.com -p 2
```
#### 4๏ธโฃ **Burp Extension** (Manual Testing)
1. Open Burp Suite โ **Extensions** โ **Add**
2. Select `burp-extension/React2Shell_Burp.py`
3. Check "React2Shell Pro" tab for GUI
---
## ๐ Repository Structure
```
cve-2025-55182/
โโโ ๐ nuclei-templates/ # Nuclei YAML templates
โ โโโ cve-2025-55182.yaml # Advanced detection template
โโโ ๐ exploits/ # Exploitation tools
โ โโโ shodan_scanner_advanced.py # Shodan mass scanner
โ โโโ scanner_advanced.sh # Bash exploitation framework
โ โโโ requirements.txt # Python dependencies
โโโ ๐ burp-extension/ # Burp Suite extension
โ โโโ React2Shell_Burp.py # Main extension (30+ payloads)
โ โโโ payloads.json # Payload library
โ โโโ detection_rules.json # Detection patterns
โโโ ๐ burp bechek/ # BCheck files for Burp Scanner
โ โโโ CVE-2025-55182-React2Shell-Active.bcheck
โ โโโ CVE-2025-66478-NextJS-React2Shell-Active.bcheck
โโโ ๐ README.md # This file
```
---
## ๐จ Features Showcase
### โจ Nuclei Template Features
- โ
**5 Exploitation Payloads**: Linux, Windows, alternative endpoints
- โ
**Mathematical Validation**: `41 * 271 = 11111` (zero false positives)
- โ
**Multi-Stage Detection**: Framework fingerprinting โ RSC discovery โ RCE validation
- โ
**Multiple Matchers**: Math validation, error patterns, execution proof
### ๐ฅ Shodan Scanner Features
- โ
**50+ Shodan Queries**: Maximum vulnerable target discovery
- โ
**Smart Extraction**: Both IPs and domain names
- โ
**Interactive Wizard**: Guided setup for beginners
- โ
**Cyberpunk UI**: Neon-themed terminal with animations
- โ
**Batch Scanning**: Multi-threaded target scanning
- โ
**JSON Reports**: Detailed vulnerability reports
### ๐ช Bash Exploit Features
- โ
**8 Predefined Payloads**: System info, AWS metadata, container detection, etc.
- โ
**Interactive Mode**: Menu-driven exploitation
- โ
**Multi-Target Scanning**: Scan from file list
- โ
**Rich Output**: Color-coded results with animations
- โ
**Error Analysis**: Detailed failure diagnostics
### ๐ Burp Extension Features
- โ
**30+ Payload Library**: Organized in 5 categories
- โ
**Dual Scanners**: Passive monitoring + active exploitation
- โ
**8-Tab GUI**: Dashboard, scanner, exploitation, payloads, results, config, about
- โ
**Burp Collaborator**: Out-of-band RCE confirmation
- โ
**Export Options**: JSON and CSV reports
- โ
**Confidence Scoring**: Certain (95%), Firm (75%), Tentative (50%)
---
## ๐ Documentation
### ๐ Detailed Guides
- [Nuclei Template Usage](nuclei-templates/README.md)
- [Shodan Scanner Guide](exploits/README.md)
- [Burp Extension Manual](burp-extension/README.md)
- [BCheck Documentation](burp%20bechek/README.md)
### ๐ Learning Resources
- [Understanding React Server Components](https://react.dev/reference/rsc/server-components)
- [Flight Protocol Deep Dive](https://github.com/facebook/react/tree/main/packages/react-server)
- [Prototype Pollution Explained](https://portswigger.net/web-security/prototype-pollution)
---
## โ ๏ธ Legal & Ethical Disclaimer
```
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ ๏ธ CRITICAL WARNING โ ๏ธ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
This toolkit is for AUTHORIZED SECURITY TESTING ONLY.
โ๏ธ Legal Use:
โ
Penetration testing with written authorization
โ
Bug bounty programs within defined scope
โ
Security research on owned infrastructure
โ
Educational purposes in controlled labs
โ Illegal Activities:
โ Unauthorized system access
โ Malicious exploitation
โ Data theft or destruction
โ Deploying malware
By using this toolkit, you agree to use it ethically and legally.
Unauthorized access to computer systems is illegal under:
โข Computer Fraud and Abuse Act (CFAA) - USA
โข Computer Misuse Act - UK
โข Similar laws worldwide
๐ You are solely responsible for your actions.
```
---
## ๐ค Connect With Me
### ๐จโ๐ป **CyberTechAjju**
*Security Researcher โข Red Team Specialist โข Bug Bounty Hunter*
**Motto:** *Keep Learning Keep Hacking* ๐
---
## ๐ Star History
If this toolkit helped you, please โญ star this repository!
[](https://star-history.com/#cybertechajju/cve-2025-55182&Date)
---
## ๐ Credits & Acknowledgments
### ๐ Special Thanks
- **React Security Team** - For responsible disclosure
- **ProjectDiscovery** - For Nuclei platform
- **PortSwigger** - For Burp Suite
- **Emre Davut** - Original Shodan scanner inspiration
- **Security Research Community** - For CVE analysis and PoCs
### ๐ Original Research
- [Assetnote React2Shell Scanner](https://github.com/assetnote/react2shell-scanner)
- [Maple3142's PoC](https://gist.github.com/maple3142/48bc9393f45e068cf8c90ab865c0f5f3)
- [React Official Advisory](https://react.dev/blog/2025/01/15/react-19-rsc-security-update)
---
## ๐ License
**For Educational and Authorized Security Testing Only**
No warranty or liability provided. Use at your own risk.
---
### ๐ฌ Questions or Issues?
Open an [Issue](https://github.com/cybertechajju/cve-2025-55182/issues) or reach out on social media!
**Made with โค๏ธ by [CyberTechAjju](https://github.com/cybertechajju)**
*Keep Learning. Keep Hacking. Stay Ethical.* ๐ฏ๐