[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"all-banners":3,"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":56,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":63,"vulnerability-7677":69,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":111},[4,15,21,37,45,51],{"title":5,"slug":6,"text":7,"link":8,"external":9,"targets":10,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 - CVE Page","nginx-rift-cve-page","🚨 New: FREE SCANNER for NGINX Rift (CVE-2026-42945). No account needed.","https://pentest-tools.com/network-vulnerability-scanning/cve-2026-42945-scanner-nginx-rift",true,[11],"/vulnerabilities-exploits/nginx-heap-buffer-overflow_29311","Scan for free","secondary","nginx-rift",{"title":16,"slug":17,"text":18,"link":8,"external":9,"targets":19,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 -blog","nginx-rift-blog","🚨 New: free scanner for NGINX Rift (CVE-2026-42945). Check your targets now.",[20],"/blog",{"title":22,"slug":23,"text":24,"link":25,"external":9,"targets":26,"cta":36,"variant":13,"campaign_id":23},"phpBB authentication bypass - PW Banners - research focused","phpbb-authentication-bypass","New research: phpBB authentication bypass discovered by Pentest-Tools.com","https://pentest-tools.com/research/phpbb-authentication-bypass",[27,28,29,30,31,32,33,34,35],"/","/network-vulnerability-scanning/port-scanner-online-nmap","/website-vulnerability-scanning/website-scanner","/information-gathering/find-subdomains-of-domain","/website-vulnerability-scanning/discover-hidden-directories-and-files","/features/attack-surface","/features/internal-network-scanning","/features/vulnerability-monitoring","/features/pentest-reporting","Discover the CVEs",{"title":38,"slug":39,"text":40,"link":41,"external":9,"targets":42,"cta":44,"variant":13,"campaign_id":23},"phpBB authentication bypass - VulnDB homepage","phpbb-authentication-bypass-vulndb","Detect 2 new CVEs our research team discovered in phpBB","https://pentest-tools.com/vulnerabilities-exploits/phpbb-authentication-bypass_29369",[43],"/vulnerabilities-exploits","See the details",{"title":46,"slug":47,"text":48,"link":25,"external":9,"targets":49,"cta":50,"variant":13,"campaign_id":23},"phpBB authentication bypass - CVE page","phpbb-authentication-bypass-cve","See how our research team discovered these 2 new CVEs in phpBB",[43],"Read the research",{"title":52,"slug":53,"text":40,"link":41,"external":9,"targets":54,"cta":44,"variant":13,"campaign_id":23},"phpBB authentication bypass - Sniper","phpbb-authentication-bypass-sniper",[55],"/exploit-helpers/sniper",["Island",57],{"key":58,"params":59,"result":61},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":60},"{}",{"head":62},{},["Island",64],{"key":65,"params":66,"result":67},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":60},{"head":68},{},{"id":70,"detectable_with":71,"vuln_details":78,"vuln_id":108,"name":109,"published":110,"updated":79},7677,{"tool":72,"engine":75},{"id":73,"name":74},1,"Network Scanner",{"id":76,"name":77},3,"OpenVAS",{"id":70,"codename":79,"description":79,"severity":80,"risk_description":81,"public_description":82,"public_recommendation":83,"recommendation":79,"references":84,"cvssv3":92,"epss_score":93,"epss_percentile":94,"cve":95,"in_cisa_catalog":107,"date":79,"software_type":79,"vendor":79,"product":79,"ptt_exploit_capabilities":79},null,"high","The following vulnerabilities exist: - An ext/date/lib/parse_date.c out-of-bounds read affecting the php_parse_date function. - The openssl extension PEM sealing code did not check the return value of the OpenSSL sealing function. - lack of bounds checks in the date extensions timelib_meridian parsing code. - A stack-based buffer overflow in the zend_ini_do_op() function in the Zend/zend_ini_parser.c script. - The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in the GD Graphics Library (aka libgd) does not zero colorMap arrays before use. - Heap buffer overread (READ: 1) finish_nested_data from unserialize - oniguruma upstream fix Successfully exploiting these issues allow remote attackers to leak information from the interpreter, crash PHP interpreter and also disclose sensitive information.","PHP is prone to multiple vulnerabilities.","Update to version 5.6.31, 7.0.21, 7.1.7 or later.",[85,86,87,88,89,90,91],"http://www.php.net/ChangeLog-5.php","http://www.securityfocus.com/bid/99492","http://www.securityfocus.com/bid/99550","http://www.securityfocus.com/bid/99605","http://www.securityfocus.com/bid/99612","http://www.securityfocus.com/bid/99489","http://www.php.net/ChangeLog-7.php",7.5,0.40698,0.97452,[96,97,98,99,100,101,102,103,104,105,106],"CVE-2017-7890","CVE-2017-9224","CVE-2017-9225","CVE-2017-9226","CVE-2017-9227","CVE-2017-9228","CVE-2017-9229","CVE-2017-11144","CVE-2017-11145","CVE-2017-11628","CVE-2017-12933",false,"NETSCAN-OPENVAS-1.3.6.1.4.1.25623.1.0.811481","PHP \u003C 5.6.31, 7.0.x \u003C 7.0.21, 7.1.x \u003C 7.1.7 Multiple Vulnerabilities (Jul 2017) - Windows","2018-01-02T00:00:00Z",["Island",112],{"key":113,"params":114,"result":116},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":115},"{\"text-color\":\"gray\"}",{"head":117},{}]