Critical Security Alert: CVE-2025-66478 (React2Shell) Affects Next.js Applications
Critical remote code execution vulnerability discovered in Next.js App Router applications. CVSS 10.0 severity. Immediate action required for all Next.js 15.x and 16.x users.
December 6, 20258 min read