[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"all-banners":3,"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":56,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":63,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":69,"vulnerability-8648":76},[4,15,21,37,45,51],{"title":5,"slug":6,"text":7,"link":8,"external":9,"targets":10,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 - CVE Page","nginx-rift-cve-page","🚨 New: FREE SCANNER for NGINX Rift (CVE-2026-42945). No account needed.","https://pentest-tools.com/network-vulnerability-scanning/cve-2026-42945-scanner-nginx-rift",true,[11],"/vulnerabilities-exploits/nginx-heap-buffer-overflow_29311","Scan for free","secondary","nginx-rift",{"title":16,"slug":17,"text":18,"link":8,"external":9,"targets":19,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 -blog","nginx-rift-blog","🚨 New: free scanner for NGINX Rift (CVE-2026-42945). Check your targets now.",[20],"/blog",{"title":22,"slug":23,"text":24,"link":25,"external":9,"targets":26,"cta":36,"variant":13,"campaign_id":23},"phpBB authentication bypass - PW Banners - research focused","phpbb-authentication-bypass","New research: phpBB authentication bypass discovered by Pentest-Tools.com","https://pentest-tools.com/research/phpbb-authentication-bypass",[27,28,29,30,31,32,33,34,35],"/","/network-vulnerability-scanning/port-scanner-online-nmap","/website-vulnerability-scanning/website-scanner","/information-gathering/find-subdomains-of-domain","/website-vulnerability-scanning/discover-hidden-directories-and-files","/features/attack-surface","/features/internal-network-scanning","/features/vulnerability-monitoring","/features/pentest-reporting","Discover the CVEs",{"title":38,"slug":39,"text":40,"link":41,"external":9,"targets":42,"cta":44,"variant":13,"campaign_id":23},"phpBB authentication bypass - VulnDB homepage","phpbb-authentication-bypass-vulndb","Detect 2 new CVEs our research team discovered in phpBB","https://pentest-tools.com/vulnerabilities-exploits/phpbb-authentication-bypass_29369",[43],"/vulnerabilities-exploits","See the details",{"title":46,"slug":47,"text":48,"link":25,"external":9,"targets":49,"cta":50,"variant":13,"campaign_id":23},"phpBB authentication bypass - CVE page","phpbb-authentication-bypass-cve","See how our research team discovered these 2 new CVEs in phpBB",[43],"Read the research",{"title":52,"slug":53,"text":40,"link":41,"external":9,"targets":54,"cta":44,"variant":13,"campaign_id":23},"phpBB authentication bypass - Sniper","phpbb-authentication-bypass-sniper",[55],"/exploit-helpers/sniper",["Island",57],{"key":58,"params":59,"result":61},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":60},"{}",{"head":62},{},["Island",64],{"key":65,"params":66,"result":67},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":60},{"head":68},{},["Island",70],{"key":71,"params":72,"result":74},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":73},"{\"text-color\":\"gray\"}",{"head":75},{},{"id":77,"detectable_with":78,"vuln_details":85,"vuln_id":101,"name":102,"published":103,"updated":86},8648,{"tool":79,"engine":82},{"id":80,"name":81},1,"Network Scanner",{"id":83,"name":84},3,"OpenVAS",{"id":77,"codename":86,"description":86,"severity":86,"risk_description":87,"public_description":88,"public_recommendation":89,"recommendation":86,"references":90,"cvssv3":86,"epss_score":96,"epss_percentile":97,"cve":98,"in_cisa_catalog":100,"date":86,"software_type":86,"vendor":86,"product":86,"ptt_exploit_capabilities":86},null,"The flaw is due to RDP server which stores an RSA private key used for signing a terminal servers public key in the mstlsapi.dll library, which allows remote attackers to calculate a valid signature and further perform a man-in-the-middle (MITM) attacks to obtain sensitive information. Successful exploitation could allow remote attackers to gain sensitive information.","Remote Desktop Protocol server is prone to an information disclosure vulnerability.","No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. A Workaround is to connect only to terminal services over trusted networks.",[91,92,93,94,95],"http://secunia.com/advisories/15605/","http://www.securityfocus.com/bid/13818","http://xforce.iss.net/xforce/xfdb/21954","http://www.oxid.it/downloads/rdp-gbu.pdf","http://sourceforge.net/p/xrdp/mailman/message/32732056",0.0597,0.90894,[99],"CVE-2005-1794",false,"NETSCAN-OPENVAS-1.3.6.1.4.1.25623.1.0.902658","Microsoft RDP Server Private Key Information Disclosure Vulnerability","2018-01-02T00:00:00Z"]