Bleeping Computer

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.
InfoWorld

New React version promises near-native performance

Facebook’s plans for its React JavaScript library include rewriting the library’s internals to improve visual performance and make web apps more like native ones. The React 16 upgrade will feature ...