## https://sploitus.com/exploit?id=CC0FBAF8-C38D-5B53-AE85-864BCF1D96C8
# CVE-2025-55182 Checker
A portable Bash script to detect vulnerable versions of **React Server DOM** and **Next.js** packages affected by [CVE-2025-55182](https://cve.mitre.org/).
## โจ Features
- Recursively scans all `package.json` files in a project.
- Detects vulnerable versions of:
- `react-server-dom-*` (`19.0.0`, `19.1.0`, `19.1.1`, `19.2.0`)
- `next` (<=15.0.4, <=15.1.8, <=15.2.5, <=15.3.5, <=15.4.7, <=15.5.6, <=16.0.6)
- Canary builds `14.3.0-canary.77` and later
- Portable: downloads a temporary `jq` binary suitable for your OS/architecture.
- Cleans up after itself โ no permanent dependencies required.
- Outputs whether the project is affected and lists vulnerable packages.
## ๐ฆ Requirements
- **Node.js + npm** (for `semver` CLI)
- Internet access (to download `jq` binary)
## ๐ Usage
Clone the repository and run the script:
```bash
git clone https://github.com/gonaumov/cve-2025-55182-checker.git
cd cve-2025-55182-checker
chmod +x cve-checker-55182.sh
./cve-checker-55182.sh