The Hacker News

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

Threat actors with ties to North Korea have likely become the latest to exploit the recently disclosed critical React2Shell security flaw in React Server Components (RSC) to deliver a previously ...
Bleeping Computer

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.
TMCnet

Arcjet Expands Framework Support with Native Nuxt and React Router SDKs

SAN FRANCISCO, Nov. 12, 2025 (GLOBE NEWSWIRE) -- Arcjet, the security platform that ships with your code, today announced the release of native Software Development Kits (SDKs) for Nuxt and React ...
InfoWorld

Flaw in React Native CLI opens dev servers to attacks

The bug exposes the Metro development server to remote attacks, allowing arbitrary OS command execution on developer systems before a fix in version 20.0.0. A critical remote-code execution (RCE) flaw ...
The Hacker News

Critical React Native CLI Flaw Exposed Millions of Developers to Remote Attacks

Details have emerged about a now-patched critical security flaw in the popular "@react-native-community/cli" npm package that could be potentially exploited to run malicious operating system (OS) ...
SecurityWeek

Critical Flaw in Popular React Native NPM Package Exposes Developers to Attacks

Software supply chain security firm JFrog has disclosed the details of a critical vulnerability affecting a popular React Native NPM package. React Native is an open source framework designed for ...
TheStreet.com

Jupiter Launches Ultra V3 – The Ultimate Trading Engine for Solana

Jupiter, the leading liquidity aggregator on Solana, today announced the launch of Ultra V3, the most comprehensive trading engine in DeFi, featuring three exclusive technologies: Iris router, ...