Exploit for Deserialization of Untrusted Data in Facebook React CVE-2025-55182

Name: Exploit for Deserialization of Untrusted Data in Facebook React CVE-2025-55182
Rating: 5 (85 reviews)

2026-04-06 | CVSS 10.0

## https://sploitus.com/exploit?id=F7B5851F-B53E-5FF9-9677-FC40DD5EEF55
# 👻 CVE-2025-55182 Go exploit

> Interactive RCE exploitation tool for CVE-2025-55182 (React Server Components)

[![GitHub Stars](https://img.shields.io/github/stars/hexsh1dow/CVE-2025-55182?style=social)](https://github.com/hexsh1dow)
[![License](https://img.shields.io/badge/License-MIT-green.svg)](LICENSE)
[![Go](https://img.shields.io/badge/Go-1.18+-blue.svg)](https://golang.org/dl/)

## 🎯 What Is This?

**CVE-2025-55182** is a minimal, interactive RCE exploitation tool targeting **CVE-2025-55182**, a critical vulnerability in React Server Components (RSC) affecting React 19.0.0 - 19.2.0 and Next.js applications.

> Note: This project is a re-upload from my old, deleted GitHub account (Hghost0x00). More projects will be added soon.

---

## 📦 Installation

### Prerequisites
- Go 1.18 or higher
- A vulnerable target running React 19.0.0 - 19.2.0

### Build from source
```bash
git clone https://github.com/hexsh1dow/CVE-2025-55182.git
cd CVE-2025-55182
go build -o CVE-2025-55182 main.go
```

---

## 🚀 Usage

### Basic Usage
```bash
./CVE-2025-55182
```

### Interactive Session
```
_____________   _______________         _______________   ________   .________          .________.____________  ______  ________  
╲_   ___ ╲   ╲ ╱   ╱╲_   _____╱         ╲_____  ╲   _  ╲  ╲_____  ╲  │   ____╱          │   ____╱│   ____╱_   │╱  __  ╲ ╲_____  ╲ 
╱    ╲  ╲╱╲   Y   ╱  │    __)_   ______  ╱  ____╱  ╱_╲  ╲  ╱  ____╱  │____  ╲   ______  │____  ╲ │____  ╲ │   │>      


**Made with 👻 by hexsh1dow**  
**Happy hacking ⚡**