theregister

Meta frees React to live in its own foundation

Meta has turned over control of React, React Native, and associated projects like JSX to the newly formed React Foundation, fulfilling a commitment made last October. Matt Carroll, a developer ...
Computer Weekly

Cyber teams on alert as React2Shell exploitation spreads

A remote code execution (RCE) vulnerability in the React JavaScript library, which earlier today caused disruption across the internet as Cloudflare pushed mitigations live on its network, is now ...
Dark Reading

React2Shell Vulnerability Under Attack From China-Nexus Groups

A critical vulnerability affecting the popular open source JavaScript library React is under attack — by none other by Chinese nation-state threat actors. CVE-2025-55182, which was disclosed Wednesday ...
Bleeping Computer

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.
The Hacker News

Why React Didn't Kill XSS: The New JavaScript Injection Playbook

React conquered XSS? Think again. That's the reality facing JavaScript developers in 2025, where attackers have quietly evolved their injection techniques to exploit everything from prototype ...
IEEE

Comparative Analysis on React and Preact Javascript Frameworks

Abstract: Javascript is one of the leading technologies used for developing web applications. React, Angular, and Vue are effective and popular Javascript frameworks in web development. In this study, ...
InfoWorld

How to handle errors in Reacterror-handling component in React

We can divide React application errors broadly into two types, and error handling into two aspects. The two React error types: JavaScript errors: These are ...