[PSA] React / NextJS Critical RCE Vulnerability (CVE-2025-66478) - Update your React Apps
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

[PSA] React / NextJS Critical RCE Vulnerability (CVE-2025-66478) - Update your React Apps

DataWagonDataWagon Member, Patron Provider
edited 10:49PM in Requests

Posting this as a PSA to anyone running Next.JS apps: https://nextjs.org/blog/CVE-2025-66478

There is an unauthenticated remote code execution vulnerability in basically every modern version of Next.JS. If you're running a server sided React app, there is a good chance it's using NextJS, and will be vulnerable to this. There are public POCs that are already being scanned for and exploited in the wild.

To be clear: This only affects server-side Next.js apps. Static sites and standard client-side React apps are not affected.

Make sure you double check any React apps you have running!

Thanked by 2op23 radex

Comments

  • radexradex Member
    edited 10:57PM

    I have used Umami v2.19.0 till today. Got a notification about high CPU usage and checked the logs, someone uploaded a script named "sex.sh" into the umami docker container and started shitty crypto miner. :D

    Thanked by 1MikeA
Sign In or Register to comment.