{"id":9042,"date":"2025-12-09T10:03:39","date_gmt":"2025-12-09T10:03:39","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2025\/12\/09\/burp-suites-scanning-arsenal-powered-with-detection-for-critical-react2shell-vulnerabilities\/"},"modified":"2025-12-09T10:03:39","modified_gmt":"2025-12-09T10:03:39","slug":"burp-suites-scanning-arsenal-powered-with-detection-for-critical-react2shell-vulnerabilities","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2025\/12\/09\/burp-suites-scanning-arsenal-powered-with-detection-for-critical-react2shell-vulnerabilities\/","title":{"rendered":"Burp Suite\u2019s Scanning Arsenal Powered With Detection for Critical React2Shell Vulnerabilities"},"content":{"rendered":"<p>    Burp Suite\u2019s Scanning Arsenal Powered With Detection for Critical React2Shell Vulnerabilities<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>\n<p>PortSwigger has enhanced Burp Suite\u2019s scanning arsenal with the latest update to its ActiveScan++ extension, introducing detection for the critical React2Shell vulnerabilities (<a href=\"https:\/\/cybersecuritynews.com\/poc-exploit-react-next-js\/\" target=\"_blank\" rel=\"noreferrer noopener\">CVE-2025-55182<\/a> and <a href=\"https:\/\/cybersecuritynews.com\/react-and-next-js-rce-vulnerability\/\" target=\"_blank\" rel=\"noreferrer noopener\">CVE-2025-66478<\/a>).<\/p>\n<p>This server-side request forgery (SSRF) flaw in React applications allows attackers to execute arbitrary shell commands, potentially leading to full remote code execution (RCE) on affected servers.<\/p>\n<p>Security researchers and penetration testers can now identify these zero-day risks during routine scans, strengthening defenses against a vulnerability chain that has already surfaced in production environments.<\/p>\n<p>ActiveScan++ builds on Burp Suite\u2019s active and passive scanning by adding low-overhead checks for advanced application behaviors. It detects subtle issues that evade standard scanners, such as host header manipulations, including password reset poisoning, cache poisoning, and <a href=\"https:\/\/cybersecuritynews.com\/anthropic-mcp-inspector-vulnerability\/\" target=\"_blank\" rel=\"noreferrer noopener\">DNS rebinding<\/a> attacks.<\/p>\n<p>A significant addition is the coverage for high-profile CVEs, now including React2Shell along with well-known vulnerabilities like Shellshock and Log4Shell. Testers now benefit from Unicode bypass detection, triggered passive scans during fuzzing, and HTTP basic authentication insertion points.<\/p>\n<figure class=\"wp-block-table\">\n<table class=\"has-fixed-layout\">\n<thead>\n<tr>\n<th>CVE ID<\/th>\n<th>Vulnerability<\/th>\n<th>CVSS v3.1 Score<\/th>\n<th>Affected Component<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td><a href=\"https:\/\/cybersecuritynews.com\/react2shell-rce-vulnerability\/\" target=\"_blank\" rel=\"noreferrer noopener\">CVE-2025-55182<\/a><\/td>\n<td>React2Shell SSRF-to-RCE <\/td>\n<td>9.8 (Critical)<\/td>\n<td>React server endpoints<\/td>\n<\/tr>\n<tr>\n<td><a href=\"https:\/\/cybersecuritynews.com\/next-js-released-a-scanner\/\" target=\"_blank\" rel=\"noreferrer noopener\">CVE-2025-66478<\/a><\/td>\n<td>React2Shell SSRF-to-RCE <\/td>\n<td>9.1 (Critical)<\/td>\n<td>React routing handlers<\/td>\n<\/tr>\n<tr>\n<td><a href=\"https:\/\/cybersecuritynews.com\/20-most-exploited-vulnerabilities-microsofts-products\/\" target=\"_blank\" rel=\"noreferrer noopener\">CVE-2021-44228<\/a><\/td>\n<td>Log4Shell<\/td>\n<td>10.0 (Critical)<\/td>\n<td>Log4j libraries<\/td>\n<\/tr>\n<tr>\n<td><a href=\"https:\/\/cybersecuritynews.com\/20-most-exploited-vulnerabilities-microsofts-products\/\" target=\"_blank\" rel=\"noreferrer noopener\">CVE-2014-6271<\/a><\/td>\n<td>Shellshock (Bash)<\/td>\n<td>9.8 (Critical)<\/td>\n<td>Bash shells<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/figure>\n<p>Integration is seamless: launch a standard Burp active scan, and ActiveScan++ runs all checks automatically. Results appear in the scan dashboard, categorized by severity. Caution is advised when performing host header tests on shared hosting, as they may redirect to unintended apps.<\/p>\n<p>This <a href=\"https:\/\/portswigger.net\/bappstore\/3123d5b5f25c4128894d97ea1acc4976\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">update arrives<\/a> amid rising SSRF exploits in React ecosystems, urging devs to patch via input sanitization and request whitelisting. Download ActiveScan++ from the BApp Store for immediate use.<\/p>\n<p class=\"has-text-align-center has-background\" style=\"background:linear-gradient(180deg,rgb(238,238,238) 94%,rgb(169,184,195) 100%)\"><strong>Follow us on <a href=\"https:\/\/news.google.com\/publications\/CAAqMggKIixDQklTR3dnTWFoY0tGV041WW1WeWMyVmpkWEpwZEhsdVpYZHpMbU52YlNnQVAB?hl=en-IN&amp;gl=IN&amp;ceid=IN:en\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Google News<\/a>, <a href=\"https:\/\/www.linkedin.com\/company\/cybersecurity-news\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">LinkedIn<\/a>, and <a href=\"https:\/\/x.com\/cyber_press_org\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">X<\/a> for daily cybersecurity updates. <a href=\"https:\/\/cybersecuritynews.com\/contact-us\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Contact us<\/a> to feature your stories.<\/strong><\/p>\n<p>The post <a href=\"https:\/\/cybersecuritynews.com\/burp-suite-react2shell-vulnerabilities\/\">Burp Suite\u2019s Scanning Arsenal Powered With Detection for Critical React2Shell Vulnerabilities<\/a> appeared first on <a href=\"https:\/\/cybersecuritynews.com\/\">Cyber Security News<\/a>.<\/p>\n<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><br \/>\n    Guru Baran<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/cybersecuritynews.com\/burp-suite-react2shell-vulnerabilities\/\">Go to cyber-security-news<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Burp Suite\u2019s Scanning Arsenal Powered With Detection for Critical React2Shell Vulnerabilities PortSwigger has enhanced Burp Suite\u2019s scanning arsenal with the latest update to its ActiveScan++ extension, introducing detection for the critical React2Shell vulnerabilities (CVE-2025-55182 and CVE-2025-66478). This server-side request forgery (SSRF) flaw in React applications allows attackers to execute arbitrary shell commands, potentially leading to [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[129,63,648],"tags":[130],"class_list":["post-9042","post","type-post","status-publish","format-standard","hentry","category-cyber-security","category-cyber-security-news","category-vulnerability-news","tag-cyber-security-news"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/9042"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=9042"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/9042\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=9042"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=9042"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=9042"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}