Dark Reading

React2Shell Vulnerability Under Attack From China-Nexus Groups

A critical vulnerability affecting the popular open source JavaScript library React is under attack — by none other by Chinese nation-state threat actors. CVE-2025-55182, which was disclosed Wednesday ...
Bleeping Computer

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.
InfoWorld

Developers urged to immediately upgrade React, Next.js

Critical vulnerability in React library should be treated by IT as they did Log4j - as an emergency, warns one expert. Developers using the React 19 library for building application interfaces are ...
The Hacker News

Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution

A maximum-severity security flaw has been disclosed in React Server Components (RSC) that, if successfully exploited, could result in remote code execution. The vulnerability, tracked as ...
Hacker

Tutorial: SSR Split Testing and Analytics with React, Redux, and Next.js

I want to show how simple it is to add custom SSR split testing using Redux and Next.js. In this tutorial we will start with an empty Node.js project and walk through the process of building simple ...
InfoWorld

JavaScript tools and frameworks we’re watching now

The rapid evolution in JavaScript tools and frameworks moves at a breakneck speed. Here's our monthly roundup of news, tutorials, and updates to help you keep up. JavaScript is moving in two ...
GitHub

Redux Toolkit Quick Start

Welcome to the Redux Toolkit Quick Start tutorial! This tutorial will briefly introduce you to Redux Toolkit and teach you how to start using it correctly. This page will focus on just how to set up a ...