-
React2Shell: Critical Pre-Auth RCE in React Server Components
React2Shell: Critical Pre-Auth RCE in React Server Components Summary In early December 2025, a critical remote code execution vulnerability was disclosed in React that allows unauthenticated attackers to execute arbitrary code on affected servers. The flaw, tracked as CVE-2025-55182 and assigned a CVSS score of 10.0, impacts React’s Server Components (RSC) implementation and has been
-
Proactive Detection in Action: The SharePoint Exploit We Blocked Before Microsoft Did
Proactive Detection in Action: The SharePoint Exploit We Blocked Before Microsoft Did Summary In this post, we break down a critical SharePoint vulnerability that was actively exploited in the wild — and how we detected and blocked it weeks before public disclosure. By analyzing malicious requests to endpoints like /_layouts/15/toolpane.aspx, our systems identified the exploit
Search
Recent Posts
- Preemptive Cybersecurity for the Industrial Edge
- LLMProbe: Early-2026 Automated Scanning of Public LLM Inference Endpoints
- React2Shell: Critical Pre-Auth RCE in React Server Components
- The Zombie Server: How a Dead T-Shirt Store Became a Cyberattack Hub
- Proactive Detection in Action: The SharePoint Exploit We Blocked Before Microsoft Did
