ThreatCluster

Attackers Exploit React2Shell Vulnerability in IT and E-commerce Sectors

First seen 27 Jan 2026, 18:50 UTC GbhackersCybersecuritynews 91% similarity 30

Article Content

Browse articles
ThreatCluster

Threat actors are exploiting a critical vulnerability known as React2Shell (CVE-2025-55182) to target companies in the insurance, e-commerce, and IT sectors. This vulnerability arises from insecure deserialization in the Flight protocol used for React Server Components, allowing unauthorized code execution on affected servers.

ThreatCluster AI

Community

Browse all →