VDB
CGA-3qrq-jr55-42fv
CGA-3qrq-jr55-42fv
REJECTED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Chainguard | langfuse-fips-3-worker | 0, 0, 0 |
| Chainguard | langfuse-fips-3 | 0, 0, 0 |
| Chainguard | langfuse-fips-3-compat | 0, 0, 0 |
Exploit Intelligence
- react2shell - CVE-2025-55182 (Next.js: CVE-2025-66478) - Unauthenticated RCE in React Server Components (Flight Protocol) - PoC Exploit (github-poc-repo)
- A Chrome extension for detecting React2Shell vulnerabilities (CVE-2025-55182 & CVE-2025-66478) in web applications (github-poc-repo)
- nilfredb/CVE-2025-66478-Research-Proof-of-Concept (github-poc-repo)
- nilfredb/CVE-2025-66478-Research-Proof-of-Concept (github-poc)
- Z3ROROOT3R/CVE-2025-66478 (github-poc)
- RCE exploit PoC for CVE-2025-55182 and CVE-2025-66478 in Next.js and React Server Components with scanner and exploitation tools. (github-poc-repo)
- React2Shell is a high-performance vulnerability scanner written in Go, specifically designed to detect Server-Side Remote Code Execution (RCE) vulnerabilities in Next.js applications (CVE-2025-55182 & CVE-2025-66478). (github-poc-repo)
- React2shell exploit (CVE-2025-55182+CVE-2025-66478) (github-poc-repo)
- A Firefox extension for detecting React2Shell vulnerabilities (CVE-2025-55182 & CVE-2025-66478) in web applications. (github-poc-repo)
- Precision-Based Detection of RSC/Next.js Remote Code Execution Vulnerabilities (CVE-2025-55182, CVE-2025-66478) (github-poc-repo)
…and 65 more exploits
Timeline
- Dec 5, 2025 PoC Published
- Dec 6, 2025 PoC Published
- Dec 7, 2025 PoC Published
- Jan 28, 2026 CVE Rejected