Explore tweets tagged as #vulnerableoutdatedcomponents
There is critical vulnerability in React Server Components disclosed as CVE-2025-55182 that impacts React 19 and frameworks that use it. A fix has been published in React versions 19.0.1, 19.1.2, and 19.2.1. We recommend upgrading immediately. https://t.co/kue7kd0XEX
147
1K
4K
If you're using Next.js version 15 or 16 you're vulnerable.... same thing If you're using React 19 in any framework that supports Server Components. You can rather update to the patched versions.....check comments
1
6
9
A critical vulnerability in React Server Components (CVE-2025-55182) affects React 19 and frameworks, including Next.js (CVE-2025-66478). All users should upgrade to the latest patched version in their release line. https://t.co/azJJgxS67J
37
243
1K
React dropped a new vulnerability alert… and suddenly every project needs updating 😭 Vercel really needs an auto-update option for deployed apps. Too many manual updates… not enough time.
3
0
4
Notepad++ Updater Installed Malware: What Happened and Why Updating to Version 8.8.9 Is Essential The widely used open-source editor Notepad++ was affected by a serious security vulnerability. The built-in updater, which is supposed to download new versions of the software,
0
0
0
That's a helpful blog post about the React / Next.js vulnerabilities https://t.co/aCPPRPm8Iw Contains a react-scanner https://t.co/OHut2g5MyZ by @SLCyberSec
Critical Security Vulnerability in React Server Components CVE-2025-55182 and rated CVSS 10.0 The vulnerability is present in versions 19.0, 19.1.0, 19.1.1, and 19.2.0 of: react-server-dom-webpack react-server-dom-parcel react-server-dom-turbopack https://t.co/AMlp6yMPSZ
1
86
408
About vulnerability in React Server Components. Highly Important
0
0
4
Fixed your Next.js app for CVE-2025-66478 yet? Run this to check if you’re vulnerable: npx fix-react2shell-next https://t.co/nkbELln0jl
0
0
1
CVE-2025-67716 Auth0 Next.js SDK Vulnerability https://t.co/zqCgNzc7Wr
0
0
0
CVE-2025-67694 Rejected reason https://t.co/HBAUXPp4lX
0
0
0
CVE-2025-9056 Unprotected service in the AudioLink component allows a local attacker to overwrite system files via unauthorized service invocation.
0
0
0
For all the fixation on memory corruption 0days, the majority of top threats are actually much higher up the stack. Configuration problems, bad design, trust exploitation, etc etc
OWASP just dropped its 2025 Top 10 - and two new categories made the list. Software Supply Chain Failures: Reflects the growing risk of attacks hiding in third-party components and dependencies. Mishandling of Exceptional Conditions: Covers what happens when systems break in
10
38
262
CVE-2025-67687 Rejected reason https://t.co/4YDmuuZ7cr
0
0
0
This is to all Frontend Engineers and Engineering managers/leads. There is an unauthenticated RCE (Remote Code Execution) vulnerability in React Server Components. The vulnerability is present in versions 19.0, 19.1.0, 19.1.1, and 19.2.0 of: •react-server-dom-webpack
10
71
253
Patch em
Critical Security Vulnerability in React Server Components CVE-2025-55182 and rated CVSS 10.0 The vulnerability is present in versions 19.0, 19.1.0, 19.1.1, and 19.2.0 of: react-server-dom-webpack react-server-dom-parcel react-server-dom-turbopack https://t.co/AMlp6yMPSZ
4
15
57
Small tip that can save your entire Next.js project Recently, some critical issues were found in Next.js due to a major vulnerability in React Server Components affecting React 19 and frameworks like Next.js. Here’s how to protect your project 👇
1
1
1
CVE-2025-67689 Rejected reason https://t.co/jpIvlLg9nO
0
0
0