Share
## https://sploitus.com/exploit?id=CC0FBAF8-C38D-5B53-AE85-864BCF1D96C8
# CVE-2025-55182 Checker

A portable Bash script to detect vulnerable versions of **React Server DOM** and **Next.js** packages affected by [CVE-2025-55182](https://cve.mitre.org/).

## โœจ Features
- Recursively scans all `package.json` files in a project.
- Detects vulnerable versions of:
  - `react-server-dom-*` (`19.0.0`, `19.1.0`, `19.1.1`, `19.2.0`)
  - `next` (<=15.0.4, <=15.1.8, <=15.2.5, <=15.3.5, <=15.4.7, <=15.5.6, <=16.0.6)
  - Canary builds `14.3.0-canary.77` and later
- Portable: downloads a temporary `jq` binary suitable for your OS/architecture.
- Cleans up after itself โ€” no permanent dependencies required.
- Outputs whether the project is affected and lists vulnerable packages.

## ๐Ÿ“ฆ Requirements
- **Node.js + npm** (for `semver` CLI)
- Internet access (to download `jq` binary)

## ๐Ÿš€ Usage
Clone the repository and run the script:

```bash
git clone https://github.com/gonaumov/cve-2025-55182-checker.git
cd cve-2025-55182-checker
chmod +x cve-checker-55182.sh
./cve-checker-55182.sh