Skip to content

Instantly share code, notes, and snippets.

View ThemeHackers's full-sized avatar
:electron:
Anything new is a success.

_tthemzdl5678 ThemeHackers

:electron:
Anything new is a success.
69 followers · 22 following
View GitHub Profile
@ThemeHackers
ThemeHackers / gistcve-2025-55182.md
Created December 18, 2025 11:07
Next.js RSC Remote Code Execution (RCE) Scanner & PoC

CVE-2025-55182: Next.js RSC Remote Code Execution (RCE) Scanner & PoC

CVE-2025-55182 is a critical vulnerability in Next.js React Server Components (RSC) that allows attackers to perform Remote Code Execution (RCE) through insecure handling of Server Actions.

This Gist includes:

  1. Vulnerability details and an example of vulnerable code.
  2. A Python script for scanning and proof-of-concept exploitation (Scanner/Exploit).
@ThemeHackers
ThemeHackers / gistssf.md
Last active December 18, 2025 11:08
SSF (Supabase Security Framework) - Quick Reference Gist

SSF (Supabase Security Framework) - Quick Reference Gist

A shareable reference for the ssf security auditing framework for Supabase projects.

📦 Quick Installation

# Install from PyPI
pip3 install supabase-audit-framework --upgrade