Hacker News new | ask | show | jobs
by WatchDog 201 days ago
I ran your exploit-rce-v4.js with and without the patched react-server-dom-webpack, and both of them executed the RCE.

So I don't think this mechanism is exactly correct, can you demo it with an actual nextjs project, instead of your mock server?
2 comments
ejpir 201 days ago
I'v updated the code, try it now with server-realistic.js:

1. npm start 2. npm run exploit

link
ejpir 201 days ago
I'm trying that, nextjs is a little different because it uses a Proxy object before it passes through, which blocks the rce.

I'm debugging it currently, maybe I'm not on the right path after all.

link