All news

CVE-2025-55182

(1 article)
Hackers Exploit React2Shell in Automated Credential Theft Campaign

April 5, 2026

Hackers Exploit React2Shell in Automated Credential Theft Campaign

CVE-2025-55182 in React2Shell is being weaponized to steal AWS keys, SSH keys, and env secrets from Next.js apps at scale. 766 hosts hit in 24 hours.