Advertisement
HIGH
Threat Intel
UAT-10608 Exploits Next.js CVE-2024-34351 via React2Shell Script
Threat actor UAT-10608 is leveraging an automated script to exploit a Next.js SSRF flaw, exfiltrating credentials and environment secrets from web applications.
Runtime Rebel Intel
3 min read·Apr 6, 2026
VU
CRITICAL
Vulnerabilities
CVE-2025-55182: Hackers Exploit React2Shell in Next.js Applications
Security researchers observe automated credential theft campaigns exploiting the React2Shell vulnerability (CVE-2025-55182) in vulnerable Next.js frameworks.
Runtime Rebel Intel
3 min read·Apr 5, 2026
CRITICAL
Threat Intel
CVE-2025-55182: Next.js React2Shell Exploited to Steal Cloud Secrets
Attackers are exploiting the CVE-2025-55182 React2Shell vulnerability in Next.js to harvest AWS secrets, SSH keys, and database credentials from 766 hosts.
Runtime Rebel Intel
3 min read·Apr 3, 2026
HIGH
Vulnerabilities
Automated Reconnaissance Targeting React2Shell Implementations
Analysis of a specialized toolkit currently utilized by threat actors to identify and exploit React2Shell vulnerabilities within enterprise network perimeters.
Runtime Rebel Intel
2 min read·Feb 23, 2026