Post · bonfire.cafe

There's an epic react server component RCE exploit making the rounds today.

A proof of concept just dropped. Probably wanna patch this rapidly.

@nullagent@partyon.xyz replied · 3 days ago

And to be clear this is a real vulnerability in React which still ought to be patched.

More details on these vulnerablities and how to mitigate is linked below 👇🏿

@elusiveman@infosec.exchange replied · 4 days ago

@nullagent straight from that git repo. Some dude vibe-coded something and found out it doesn't work.

@ricci@discuss.systems replied · 4 days ago

@nullagent don't make me tap the sign

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

Automatic federation enabled