1. Home
  2. Vulnerabilities
  3. CVE-2025-66478
0.0
NA
CVE-2025-66478
Apache Struts Remote Code Execution Vulnerability
Description

Rejected reason: This CVE is a duplicate of CVE-2025-55182.

INFO

Published Date :

Dec. 3, 2025, 6:15 p.m.

Last Modified :

Dec. 3, 2025, 6:15 p.m.

Remotely Exploit :

No

Source :

[email protected]
Affected Products

The following products are affected by CVE-2025-66478 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Vercel next.js
: Total Affected Vendor : 1 | Products : 1
Solution
Apply security patches and updates from the vendor to fix the vulnerability.
  • Apply vendor security patches.
  • Update the affected software.
  • Review system configurations.
Public PoC/Exploit Available at Github

CVE-2025-66478 has a 326 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Profile Photo
cryptoflops/stacks-builder-badge-nft

None

Clarity TypeScript CSS JavaScript

Updated: 7 hours, 4 minutes ago
1 stars 0 fork 0 watcher
Born at : Dec. 21, 2025, 3:50 p.m. This repo has been linked 1 different CVEs too.
Profile Photo
nextwaveaisuite/clear-skin-site-factory

Autopilot SEO site generator for Clear Skin Australia

Python TypeScript JavaScript CSS

Updated: 11 hours, 7 minutes ago
0 stars 0 fork 0 watcher
Born at : Dec. 21, 2025, 12:01 p.m. This repo has been linked 1 different CVEs too.
Profile Photo
Hecate1337-py/kit2sh

None

Updated: 1 day, 15 hours ago
0 stars 0 fork 0 watcher
Born at : Dec. 20, 2025, 3:39 p.m. This repo has been linked 1 different CVEs too.
Profile Photo
xxxTectationxxx/React2Shell-CVE-Lab

A self-hosted vulnerable Next.js environment running on Docker for simulating CVE-2025-55182. Built for educational security research and CTF practice.

Updated: 1 day, 6 hours ago
1 stars 0 fork 0 watcher
Born at : Dec. 20, 2025, 3:11 p.m. This repo has been linked 2 different CVEs too.
Profile Photo
gluppler/GABECZH

My Portfolio Website

TypeScript CSS JavaScript Python

Updated: 18 hours, 23 minutes ago
0 stars 0 fork 0 watcher
Born at : Dec. 20, 2025, 10:17 a.m. This repo has been linked 2 different CVEs too.
Profile Photo
paulojoseph/structure-os

None

Shell JavaScript TypeScript CSS

Updated: 2 days, 13 hours ago
0 stars 0 fork 0 watcher
Born at : Dec. 19, 2025, 2:08 p.m. This repo has been linked 1 different CVEs too.
Profile Photo
chrahman/react2shell-CVE-2025-55182-full-rce-script

React2Shell vulnerability (CVE-2025-55182 / CVE-2025-66478) Full Script

Shell

Updated: 2 days, 20 hours ago
0 stars 0 fork 0 watcher
Born at : Dec. 19, 2025, 10:17 a.m. This repo has been linked 2 different CVEs too.
Profile Photo
mogster-sys/AffectAtlas

React Native app that generates design systems from emotional inputs using Plutchik's Wheel

TypeScript JavaScript

Updated: 2 days, 21 hours ago
0 stars 0 fork 0 watcher
Born at : Dec. 19, 2025, 10 a.m. This repo has been linked 2 different CVEs too.
Profile Photo
skinner84/wiz-master-demo2

None

Dockerfile JavaScript TypeScript CSS HCL Shell

Updated: 2 days, 22 hours ago
0 stars 0 fork 0 watcher
Born at : Dec. 19, 2025, 8:18 a.m. This repo has been linked 1 different CVEs too.
Profile Photo
RavinduRathnayaka/CVE-2025-55182-PoC

React2Shell (CVE-2025-66478): A Python-based Proof of Concept for Critical Remote Code Execution (RCE) in Next.js Server Components. Features an interactive CLI, custom payload injection, and cleaner output formatting. For educational research only.

Python

Updated: 3 days, 11 hours ago
0 stars 0 fork 0 watcher
Born at : Dec. 18, 2025, 7:35 p.m. This repo has been linked 2 different CVEs too.
Profile Photo
tganga369/nextjs-rce-exploit

None

Python

Updated: 3 days, 20 hours ago
0 stars 0 fork 0 watcher
Born at : Dec. 18, 2025, 10:47 a.m. This repo has been linked 1 different CVEs too.
Profile Photo
r4j3sh-com/CVE-2025-55182

Lightweight Go toolkit plus a Dockerized Next.js lab to explore and triage CVE-2025-55182.

Go Dockerfile

Updated: 3 days, 22 hours ago
0 stars 0 fork 0 watcher
Born at : Dec. 18, 2025, 8:19 a.m. This repo has been linked 2 different CVEs too.
Profile Photo
aleksandrova834/react2shell-bypasswaf

High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)

Python

Updated: 4 days, 3 hours ago
1 stars 0 fork 0 watcher
Born at : Dec. 18, 2025, 2:49 a.m. This repo has been linked 2 different CVEs too.
Profile Photo
zesbe/Readme

None

Updated: 4 days, 5 hours ago
0 stars 0 fork 0 watcher
Born at : Dec. 18, 2025, 12:36 a.m. This repo has been linked 2 different CVEs too.
Profile Photo
wolf30099/dNogueira300

None

JavaScript TypeScript CSS

Updated: 4 days, 15 hours ago
0 stars 0 fork 0 watcher
Born at : Dec. 17, 2025, 3:55 p.m. This repo has been linked 2 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2025-66478 vulnerability anywhere in the article.

  • CybersecurityNews
Cybersecurity Weekly Recap – PornHub Breach, Cisco 0-Day, Amazon Detains DPRK IT Worker, and more

In a week that revealed the flaws in digital trust, cybersecurity headlines were filled with high-profile breaches, zero-day exploits, and bold nation-state espionage. Attackers claimed to have swiped ... Read more

Published Date: Dec 21, 2025 (16 hours, 42 minutes ago)
  • The Hacker News
React2Shell Vulnerability Actively Exploited to Deploy Linux Backdoors

The security vulnerability known as React2Shell is being exploited by threat actors to deliver malware families like KSwapDoor and ZnDoor, according to findings from Palo Alto Networks Unit 42 and NTT ... Read more

Published Date: Dec 16, 2025 (5 days, 22 hours ago)
  • CybersecurityNews
New PCPcat Exploiting React2Shell Vulnerability to compromise 59,000+ Servers

A new malware campaign called PCPcat has successfully compromised more than 59,000 servers in under 48 hours through targeted exploitation of critical vulnerabilities in Next.js and React frameworks. ... Read more

Published Date: Dec 15, 2025 (6 days, 13 hours ago)
  • BleepingComputer
Google links more Chinese hacking groups to React2Shell attacks

​Over the weekend, ​Google's threat intelligence team linked five more Chinese hacking groups to attacks exploiting the maximum-severity "React2Shell" remote code execution vulnerability. Tracked as C ... Read more

Published Date: Dec 15, 2025 (6 days, 18 hours ago)
  • The Register
New React vulns leak secrets, invite DoS attacks

If you're running React Server Components, you just can't catch a break. In addition to already-reported flaws, newly discovered bugs allow attackers to hang vulnerable servers and potentially leak Se ... Read more

Published Date: Dec 12, 2025 (1 week, 2 days ago)
  • Google Cloud
Multiple Threat Actors Exploit React2Shell (CVE-2025-55182)

Written by: Aragorn Tseng, Robert Weiner, Casey Charrier, Zander Work, Genevieve Stark, Austin Larsen Introduction On Dec. 3, 2025, a critical unauthenticated remote code execution (RCE) vulnerability ... Read more

Published Date: Dec 12, 2025 (1 week, 2 days ago)
  • The Register
Half of exposed React servers remain unpatched amid active exploitation

Half of the internet-facing systems vulnerable to a fast-moving React remote code execution flaw remain unpatched, even as exploitation has exploded into more than a dozen active attack clusters rangi ... Read more

Published Date: Dec 12, 2025 (1 week, 2 days ago)
  • Daily CyberSecurity
“React2Shell” Crisis: Critical Vulnerability Triggers Global Cyberattacks by State-Sponsored Groups

A critical security flaw in the popular React web framework has ignited a wave of cyberattacks, with state-sponsored actors and cybercriminals rushing to exploit the vulnerability before organizations ... Read more

Published Date: Dec 11, 2025 (1 week, 4 days ago)
  • CybersecurityNews
Burp Suite’s Scanning Arsenal Powered With Detection for Critical React2Shell Vulnerabilities

PortSwigger has enhanced Burp Suite’s scanning arsenal with the latest update to its ActiveScan++ extension, introducing detection for the critical React2Shell vulnerabilities (CVE-2025-55182 and CVE- ... Read more

Published Date: Dec 09, 2025 (1 week, 6 days ago)
  • Huntress
PeerBlight Linux Backdoor Exploits React2Shell CVE-2025-55182

TL;DR: Huntress is seeing threat actors exploit a vulnerability in React Server Components (CVE-2025-55182) across several organizations in our customer base. Attackers have attempted to deploy crypto ... Read more

Published Date: Dec 09, 2025 (1 week, 6 days ago)
  • CybersecurityNews
Next.js Released a Scanner to Detect and Update Apps Impacted by React2Shell Vulnerability

A dedicated command-line tool, fix-react2shell-next, to help developers immediately detect and patch the critical “React2Shell” vulnerability (CVE-2025-66478). This new scanner offers a one-line solut ... Read more

Published Date: Dec 08, 2025 (1 week, 6 days ago)
  • nextron-systems.com
React Server Components & Next.js Vulnerabilities – Status of Nextron Products

Over the past days, many of our customers have seen reports about a critical remote code execution vulnerability in React Server Components (CVE-2025-55182) and the related Next.js vulnerability (CVE- ... Read more

Published Date: Dec 07, 2025 (2 weeks ago)
  • SentinelOne
From React to Remote Code – Protecting Against the Critical React2Shell RCE Exposure

A critical remote code execution (RCE) vulnerability, dubbed ‘React2Shell’, affecting React Server Components (RSC) and Next.js, is allowing unauthenticated attackers to perform server-side code attac ... Read more

Published Date: Dec 05, 2025 (2 weeks, 2 days ago)
  • SentinelOne
From React to Remote Code – Protecting Against the Critical React2Shell RCE Exposure

A critical remote code execution (RCE) vulnerability, dubbed ‘React2Shell’, affecting React Server Components (RSC) and Next.js, is allowing unauthenticated attackers to perform server-side code attac ... Read more

Published Date: Dec 05, 2025 (2 weeks, 2 days ago)
  • SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 49

The Good | Authorities Jail WiFi Hacker, Seize €1.3B Crypto Mixer & Charge Two Malicious Insiders An Australian national has received just over seven years in prison for running “evil twin” WiFi netwo ... Read more

Published Date: Dec 05, 2025 (2 weeks, 2 days ago)
  • SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 49

The Good | Authorities Jail WiFi Hacker, Seize €1.3B Crypto Mixer & Charge Two Malicious Insiders An Australian national has received just over seven years in prison for running “evil twin” WiFi netwo ... Read more

Published Date: Dec 05, 2025 (2 weeks, 2 days ago)
  • The Hacker News
Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability

Dec 05, 2025Ravie LakshmananVulnerability / Software Security Two hacking groups with ties to China have been observed weaponizing the newly disclosed security flaw in React Server Components (RSC) ... Read more

Published Date: Dec 05, 2025 (2 weeks, 2 days ago)
  • BleepingComputer
React2Shell critical flaw actively exploited in China-linked attacks

Multiple China-linked threat actors began exploiting the React2Shell vulnerability (CVE-2025-55182) affecting React and Next.js just hours after the max-severity issue was disclosed. React2Shell is an ... Read more

Published Date: Dec 05, 2025 (2 weeks, 2 days ago)
  • CybersecurityNews
PoC Exploit Released for Critical React, Next.js RCE Vulnerability (CVE-2025-55182)

A proof-of-concept (PoC) exploit for CVE-2025-55182, a maximum-severity remote code execution (RCE) flaw in React Server Components, surfaced publicly this week, heightening alarms for developers worl ... Read more

Published Date: Dec 05, 2025 (2 weeks, 3 days ago)
  • TheCyberThrone
React2Shell CVE-2025-55182- Shaking React and Next.js Ecosystems

React Server Components promised a revolution in web development—seamless server-side rendering with client interactivity. But a critical flaw dubbed React2Shell has turned that promise into a widespr ... Read more

Published Date: Dec 05, 2025 (2 weeks, 3 days ago)

Results are limited to the first 20 news articles due to potential performance issues.

The following table lists the changes that have been made to the CVE-2025-66478 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Rejected by [email protected]

    Dec. 03, 2025

    Action Type Old Value New Value
  • New CVE Received by [email protected]

    Dec. 03, 2025

    Action Type Old Value New Value
    Added Description Rejected reason: This CVE is a duplicate of CVE-2025-55182.
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
Vulnerability Scoring Details
No CVSS metrics available for this vulnerability.