REACT2SHELL SCANNER

// High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)

React2shell Scanner

High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)

13EmergingUnknown

See Alternatives Compare...

Updated

Today

What it does

A command-line tool for detecting CVE-2025-55182 and CVE-2025-66478 in Next.js applications using React Server Components. For technical details on the vulnerability and detection methodology, see our blog post: https://slcyber.io/research-center/high-fidelity-detection-mechanism-for-rsc-next-js-rce-cve-2025-55182-cve-2025-66478 By default, the scanner sends a crafted multipart POST request

Getting Started

git

git clone https://github.com/assetnote/react2shell-scanner

Links

Platforms

🪟windows🍎mac🐧linux

Install Difficulty

moderate

Built With

python

Community Reactions

Similar Tools

See all alternatives →

13Emerging

Authentik

Open-source identity provider with flows, policies, and SSO

Unknownfreemium

13Emerging

Lockenv

Simple, password-based encrypted vault for .env and infrastructure secrets. Like git-crypt or sops, but dramatically ...

Unknownopen-source

13Emerging

Fnox

encrypted/remote secret manager

Unknownopen-source

13Emerging

CyberStrikeAI

CyberStrikeAI is an AI-native security testing platform built in Go. It integrates 100+ security tools, an intelligen...

Unknownopen-source

13Emerging

Traefik

A modern reverse proxy and load balancer for microservices

Unknownopen-source

13Emerging

Rules

Project CodeGuard is an AI model-agnostic security framework and ruleset that embeds secure-by-default practices into...

Unknownopen-source