Home / Security updates / FormAssembly Not Affected by React2Shell (CVE-2025-55182)

FormAssembly Not Affected by React2Shell (CVE-2025-55182)

Security updates detail rendered from /security-updates/upd_66822e3074e5c66d.

Overview

Field	Value
id	upd_66822e3074e5c66d
providerId	safebase
organizationId	org_55e9b12108268271
trustCenterId	tc_27acd29fa00d15ae
title	FormAssembly Not Affected by React2Shell (CVE-2025-55182)
message	We are aware of the recently reported vulnerabilities in React and Next.js (CVE-2025-55182), also known as React2Shell. After reviewing our production environments and dependency inventory, we can confirm that none of our applications or infrastructure use the affected versions of React, Next.js, or related packages. We have not found any signs of vulnerability, exploitation, or exposure tied to this issue. We will continue to monitor security advisories and follow current best practices to keep our systems safe. If you have any questions or concerns, feel free to contact our security team at [email protected].
url	-
publishedAt	2025-12-17
source	{ "field": "statuspage/public/compliance-update", "category": "vulnerabilities" }
company	{ "id": "org_55e9b12108268271", "name": "FormAssembly", "domains": [ "security.formassembly.com", "formassembly.com" ] }
trust_center	{ "id": "tc_27acd29fa00d15ae", "name": "FormAssembly", "url": "https://security.formassembly.com", "host": "security.formassembly.com" }
provider	{ "id": "safebase", "name": "SafeBase" }
links	{ "self": "/v1/security-updates/upd_66822e3074e5c66d", "company": "/v1/companies/org_55e9b12108268271", "trust_center": "/v1/trust-centers/tc_27acd29fa00d15ae", "provider": "/v1/providers/safebase" }

Get this page with API

Rendered from the bluedoor Trust Centers API. Reproduce it:

GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_66822e3074e5c66dJSON