InfoWorld

Developers urged to immediately upgrade React, Next.js

Critical vulnerability in React library should be treated by IT as they did Log4j - as an emergency, warns one expert.
SecurityWeek

React2Shell: In-the-Wild Exploitation Expected for Critical React Vulnerability

Critical React vulnerability tracked as CVE-2025-55182 and React2Shell can be exploited for unauthenticated remote code ...
ZDNet

Facebook relicenses React in the face of open-source dev backlash

Facebook has announced its intentions to relicense a number of its open-source projects, including React, Jest, Flow, and Immutable.js, following developer backlash due to patent terms embedded in ...