Posts

In this blog post, I have explained how I created my blog website using Hugo-PaperMod and Vercel for free. As I work in cybersecurity industry, I always read so many blogs of great security researchers and follow their RSS feeds which has helped me a lot to expand my knowledge in the field. I always wanted to write my own blogs but never knew where to start. A friend who himself writes blogs suggested that I should use Hugo-PaperMod theme to build my blog website. ...

Introduction React2Shell is a vulnerability in React Server Components which gives an attacker unauthenticated remote code execution on a remote server. This vulnerability has CVSS score of 10.0 💀. If you are curious like me and wants to know what happens on the backend code which cause this remote code execution this blog is for you. Before diving in to code let’s start with some basics. What are React Server Components? React Server Components (RSC) are a feature in React which is used in React frameworks like Next.js. They are used to segregate client-side and server-side rendered components. Static or non-interactive part of the website is rendered on the server side and sent it to the user in the HTTP response. Interactive elements like button or links are only rendered on client side. It is used to make website respond faster for users. ...