[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"all-banners":3,"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":42,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":49,"vulnerability-14975":55,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":94},[4,15,21,30,37],{"title":5,"slug":6,"text":7,"link":8,"external":9,"targets":10,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 - CVE Page","nginx-rift-cve-page","🚨 New: FREE SCANNER for NGINX Rift (CVE-2026-42945). No account needed.","https://pentest-tools.com/network-vulnerability-scanning/cve-2026-42945-scanner-nginx-rift",true,[11],"/vulnerabilities-exploits/nginx-heap-buffer-overflow_29311","Scan for free","secondary","nginx-rift",{"title":16,"slug":17,"text":18,"link":8,"external":9,"targets":19,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 -blog","nginx-rift-blog","🚨 New: free scanner for NGINX Rift (CVE-2026-42945). Check your targets now.",[20],"/blog",{"title":22,"slug":23,"text":24,"link":25,"external":9,"targets":26,"cta":28,"variant":13,"campaign_id":29},"phpBB authentication bypass - VulnDB homepage","phpbb-authentication-bypass-vulndb","Detect 2 new CVEs our research team discovered in phpBB","https://pentest-tools.com/vulnerabilities-exploits/phpbb-authentication-bypass_29369",[27],"/vulnerabilities-exploits","See the details","phpbb-authentication-bypass",{"title":31,"slug":32,"text":33,"link":34,"external":9,"targets":35,"cta":36,"variant":13,"campaign_id":29},"phpBB authentication bypass - CVE page","phpbb-authentication-bypass-cve","See how our research team discovered these 2 new CVEs in phpBB","https://pentest-tools.com/research/phpbb-authentication-bypass",[27],"Read the research",{"title":38,"slug":39,"text":24,"link":25,"external":9,"targets":40,"cta":28,"variant":13,"campaign_id":29},"phpBB authentication bypass - Sniper","phpbb-authentication-bypass-sniper",[41],"/exploit-helpers/sniper",["Island",43],{"key":44,"params":45,"result":47},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":46},"{}",{"head":48},{},["Island",50],{"key":51,"params":52,"result":53},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":46},{"head":54},{},{"id":56,"detectable_with":57,"vuln_details":64,"vuln_id":91,"name":92,"published":93,"updated":65},14975,{"tool":58,"engine":61},{"id":59,"name":60},1,"Network Scanner",{"id":62,"name":63},3,"OpenVAS",{"id":56,"codename":65,"description":65,"severity":66,"risk_description":67,"public_description":68,"public_recommendation":69,"recommendation":65,"references":70,"cvssv3":76,"epss_score":77,"epss_percentile":78,"cve":79,"in_cisa_catalog":89,"date":90,"software_type":65,"vendor":65,"product":65,"ptt_exploit_capabilities":65},null,"high","Multiple flaws are due to: - Authentication bypass vulnerability in the core config manager in allows an unauthenticated attacker to make configuration changes and leverage an authenticated SQL injection vulnerability. - SQL injection vulnerability in the core config manager allows an attacker to execute arbitrary SQL commands via the selInfoKey1 parameter. - A remote command execution (RCE) vulnerability allows an attacker to execute arbitrary commands on the target system, aka OS command injection. - A privilege escalation vulnerability, allows an attacker to leverage an RCE vulnerability escalating to root. - SQL injection vulnerability in the txtSearch parameter of admin/logbook.php. - SQL injection vulnerability in the chbKey1 parameter of admin/menuaccess.php. - SQL injection vulnerability in the cname parameter of admin/commandline.php. - SQL injection vulnerability in the key1 parameter of admin/info.php. Successful exploitation will allow remote attacker to execute arbitrary SQL commands, execute arbitrary commands and to leverage an RCE vulnerability escalating to root.","Nagios XI is prone to multiple vulnerabilities.","Update to version 5.4.13 or later. Please see the references for more information.",[71,72,73,74,75],"https://www.nagios.com/downloads","https://gist.github.com/caleBot/f0a93b5a98574393e0139104eacc2d0f","https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT","https://github.com/rapid7/metasploit-framework/pull/9938","http://blog.redactedsec.net/exploits/2018/04/26/nagios.html",8.8,0.64172,0.99126,[80,81,82,83,84,85,86,87,88],"CVE-2018-8733","CVE-2018-8734","CVE-2018-8735","CVE-2018-8736","CVE-2018-10736","CVE-2018-10735","CVE-2018-10738","CVE-2018-10737","CVE-2018-10810",false,"2018-05-16T00:00:00Z","NETSCAN-OPENVAS-1.3.6.1.4.1.25623.1.0.813215","Nagios XI Multiple Vulnerabilities (Apr 2018) - Active Check","2018-04-27T00:00:00Z",["Island",95],{"key":96,"params":97,"result":99},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":98},"{\"text-color\":\"gray\"}",{"head":100},{}]