[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"all-banners":3,"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":42,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":49,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":55,"vulnerability-11876":62},[4,15,21,30,37],{"title":5,"slug":6,"text":7,"link":8,"external":9,"targets":10,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 - CVE Page","nginx-rift-cve-page","🚨 New: FREE SCANNER for NGINX Rift (CVE-2026-42945). No account needed.","https://pentest-tools.com/network-vulnerability-scanning/cve-2026-42945-scanner-nginx-rift",true,[11],"/vulnerabilities-exploits/nginx-heap-buffer-overflow_29311","Scan for free","secondary","nginx-rift",{"title":16,"slug":17,"text":18,"link":8,"external":9,"targets":19,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 -blog","nginx-rift-blog","🚨 New: free scanner for NGINX Rift (CVE-2026-42945). Check your targets now.",[20],"/blog",{"title":22,"slug":23,"text":24,"link":25,"external":9,"targets":26,"cta":28,"variant":13,"campaign_id":29},"phpBB authentication bypass - VulnDB homepage","phpbb-authentication-bypass-vulndb","Detect 2 new CVEs our research team discovered in phpBB","https://pentest-tools.com/vulnerabilities-exploits/phpbb-authentication-bypass_29369",[27],"/vulnerabilities-exploits","See the details","phpbb-authentication-bypass",{"title":31,"slug":32,"text":33,"link":34,"external":9,"targets":35,"cta":36,"variant":13,"campaign_id":29},"phpBB authentication bypass - CVE page","phpbb-authentication-bypass-cve","See how our research team discovered these 2 new CVEs in phpBB","https://pentest-tools.com/research/phpbb-authentication-bypass",[27],"Read the research",{"title":38,"slug":39,"text":24,"link":25,"external":9,"targets":40,"cta":28,"variant":13,"campaign_id":29},"phpBB authentication bypass - Sniper","phpbb-authentication-bypass-sniper",[41],"/exploit-helpers/sniper",["Island",43],{"key":44,"params":45,"result":47},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":46},"{}",{"head":48},{},["Island",50],{"key":51,"params":52,"result":53},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":46},{"head":54},{},["Island",56],{"key":57,"params":58,"result":60},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":59},"{\"text-color\":\"gray\"}",{"head":61},{},{"id":63,"detectable_with":64,"vuln_details":71,"vuln_id":94,"name":95,"published":96,"updated":72},11876,{"tool":65,"engine":68},{"id":66,"name":67},1,"Network Scanner",{"id":69,"name":70},3,"OpenVAS",{"id":63,"codename":72,"description":72,"severity":72,"risk_description":73,"public_description":74,"public_recommendation":75,"recommendation":72,"references":76,"cvssv3":72,"epss_score":84,"epss_percentile":85,"cve":86,"in_cisa_catalog":93,"date":72,"software_type":72,"vendor":72,"product":72,"ptt_exploit_capabilities":72},null,"Multiple errors exist due to: - The MD5 Message-Digest Algorithm does not provide enough collision resistance when hashing keys. - A flaw in Inductive Automation Ignition that is triggered when resetting the session ID parameter via a HTTP request. - A flaw in the web interface that is due to a missing session termination once a user logs out. - A flaw in application that is due to the program storing OPC server credentials in plaintext. - A flaw in application that is triggered when an unhandled exception occurs, which can cause an error or warning message. - The application does not validate input before returning it to users. Successful exploitation will allow remote attackers to gain access to potentially sensitive information, hijack an active session, bypass the anti-bruteforce mechanism, create malicious applications or conduct other spoofing attacks, and create a specially crafted request that would execute arbitrary script code in a users browser session.","Inductive Automation Ignition is prone to multiple vulnerabilities.","Upgrade to Inductive Automation Ignition version 7.7.4 or later.",[77,78,79,80,81,82,83],"https://ics-cert.us-cert.gov/advisories/ICSA-15-090-01","http://www.securityfocus.com/bid/73475","http://www.securityfocus.com/bid/73474","http://www.securityfocus.com/bid/73473","http://www.securityfocus.com/bid/73471","http://www.securityfocus.com/bid/73469","http://www.securityfocus.com/bid/73468",0.02266,0.80747,[87,88,89,90,91,92],"CVE-2015-0995","CVE-2015-0994","CVE-2015-0993","CVE-2015-0992","CVE-2015-0991","CVE-2015-0976",false,"NETSCAN-OPENVAS-1.3.6.1.4.1.25623.1.0.805472","Inductive Automation Ignition \u003C 7.7.4 Multiple Vulnerabilities","2018-01-02T00:00:00Z"]