HKCERT25 (WEB) - react

1. Challenge Information

• Category: Web
• Difficulty: Easy

2. TL;DR Solution Summary

The web app is vulnerable to React RCE vulnerabilities CVE-2025-55182

3. Exploitation

• I use a script from github ( https://github.com/Rat5ak/CVE-2025-55182-React2Shell-RCE-POC ) to exploit it