Hackers exploit critical React Native Metro bug to breach dev systems

Hackers are targeting developers by exploiting the critical vulnerability CVE-2025-11953 in the Metro server for React Native ...
Microsoft

Defending against the CVE-2025-55182 (React2Shell) vulnerability in React Server Components

CVE-2025-55182 (also referred to as React2Shell and includes CVE-2025-66478, which was merged into it) is a critical pre-authentication remote code execution (RCE) vulnerability affecting React Server ...
TechSpot

Critical vulnerability in React JS framework has a near 100% chance to be exploited

Facepalm: A widely used web technology is affected by a serious security vulnerability that can be exploited with minimal effort to compromise servers. Known as "React2Shell," the flaw may require ...
Bleeping Computer

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.
cybernews

“Worst case scenario” vulnerability found in React, Next.js

A critical security flaw has been discovered in React, one of the most widely used JavaScript libraries for building websites. The bug enables external attackers to run privileged, arbitrary code on ...
theregister

'Exploitation is imminent' as 39 percent of cloud environs have max-severity React hole

A maximum-severity flaw in the widely used JavaScript library React, and several React-based frameworks including Next.js allows unauthenticated, remote attackers to execute malicious code on ...
The Hacker News

Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution

A maximum-severity security flaw has been disclosed in React Server Components (RSC) that, if successfully exploited, could result in remote code execution. The vulnerability, tracked as ...
Reuters

Bolivia's Quiroga promises 'dramatic' economic change if he wins election runoff

Quiroga was runner-up in first round with 27% of vote He faces centrist rival on October 19 He emphasizes spending cuts and stronger US ties Hard-hitting proposals may alienate Indigenous majority LA ...
Financial Post

Runoff Contender Vows to Rework Bolivia's $14 Billion Debt

(Bloomberg) — Presidential candidate Jorge Tuto Quiroga intends to seek better terms on Bolivia’s $14 billion of overseas debt to stabilize an economy ravaged by shortages and soaring inflation. In an ...
batimes

Paz or 'Tuto'? Meet the two candidates who will duel for Bolivian Presidency

A right-wing ex-president and a senator from Bolivia's richest regions will go head-to-head in the country's presidential runoff in October after leading the first round of voting on Sunday.
El País in English

Rodrigo Paz and Tuto Quiroga will compete for the Bolivian presidency in October

The result of the presidential elections held Sunday in Bolivia could scarcely have been more surprising. Like a marathon runner attacking the field in the final push, the Christian Democratic Party ...
The Hacker News

Why React Didn't Kill XSS: The New JavaScript Injection Playbook

React conquered XSS? Think again. That's the reality facing JavaScript developers in 2025, where attackers have quietly evolved their injection techniques to exploit everything from prototype ...