[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"all-banners":3,"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":42,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":49,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":55,"vulnerability-26320":62},[4,15,21,30,37],{"title":5,"slug":6,"text":7,"link":8,"external":9,"targets":10,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 - CVE Page","nginx-rift-cve-page","🚨 New: FREE SCANNER for NGINX Rift (CVE-2026-42945). No account needed.","https://pentest-tools.com/network-vulnerability-scanning/cve-2026-42945-scanner-nginx-rift",true,[11],"/vulnerabilities-exploits/nginx-heap-buffer-overflow_29311","Scan for free","secondary","nginx-rift",{"title":16,"slug":17,"text":18,"link":8,"external":9,"targets":19,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 -blog","nginx-rift-blog","🚨 New: free scanner for NGINX Rift (CVE-2026-42945). Check your targets now.",[20],"/blog",{"title":22,"slug":23,"text":24,"link":25,"external":9,"targets":26,"cta":28,"variant":13,"campaign_id":29},"phpBB authentication bypass - VulnDB homepage","phpbb-authentication-bypass-vulndb","Detect 2 new CVEs our research team discovered in phpBB","https://pentest-tools.com/vulnerabilities-exploits/phpbb-authentication-bypass_29369",[27],"/vulnerabilities-exploits","See the details","phpbb-authentication-bypass",{"title":31,"slug":32,"text":33,"link":34,"external":9,"targets":35,"cta":36,"variant":13,"campaign_id":29},"phpBB authentication bypass - CVE page","phpbb-authentication-bypass-cve","See how our research team discovered these 2 new CVEs in phpBB","https://pentest-tools.com/research/phpbb-authentication-bypass",[27],"Read the research",{"title":38,"slug":39,"text":24,"link":25,"external":9,"targets":40,"cta":28,"variant":13,"campaign_id":29},"phpBB authentication bypass - Sniper","phpbb-authentication-bypass-sniper",[41],"/exploit-helpers/sniper",["Island",43],{"key":44,"params":45,"result":47},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":46},"{}",{"head":48},{},["Island",50],{"key":51,"params":52,"result":53},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":46},{"head":54},{},["Island",56],{"key":57,"params":58,"result":60},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":59},"{\"text-color\":\"gray\"}",{"head":61},{},{"id":63,"detectable_with":64,"vuln_details":71,"vuln_id":93,"name":94,"published":95,"updated":72},26320,{"tool":65,"engine":68},{"id":66,"name":67},1,"Network Scanner",{"id":69,"name":70},3,"OpenVAS",{"id":63,"codename":72,"description":72,"severity":72,"risk_description":73,"public_description":74,"public_recommendation":75,"recommendation":72,"references":76,"cvssv3":72,"epss_score":87,"epss_percentile":88,"cve":89,"in_cisa_catalog":91,"date":92,"software_type":72,"vendor":72,"product":72,"ptt_exploit_capabilities":72},null,"The Python standard library functions urllib.parse.urlsplit and urlparse accepted domain names that included square brackets which isnt valid according to RFC 3986. Square brackets are only meant to be used as delimiters for specifying IPv6 and IPvFuture hosts in URLs. This could result in differential parsing across the Python URL parser and other specification-compliant URL parsers.","Python is prone to an improper input validation vulnerability in the urllib.parse.urlsplit and urlparse standard functions.","Update to version 3.9.22, 3.10.17, 3.11.12, 3.12.9, 3.13.2 or later.",[77,78,79,80,81,82,83,84,85,86],"https://mail.python.org/archives/list/security-announce@python.org/thread/K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB/","https://github.com/python/cpython/issues/105704","https://github.com/python/cpython/pull/129418","https://docs.python.org/3.13/whatsnew/changelog.html#python-3-13-2-final","https://docs.python.org/3.12/whatsnew/changelog.html#python-3-12-9-final","https://docs.python.org/3.11/whatsnew/changelog.html#python-3-11-12-final","https://docs.python.org/3.10/whatsnew/changelog.html#python-3-10-17-final","https://docs.python.org/3.9/whatsnew/changelog.html#python-3-9-22-final","https://osv.dev/vulnerability/PSF-2025-1","https://www.cve.org/CVERecord?id=CVE-2025-0938",0.01437,0.69704,[90],"CVE-2025-0938",false,"2025-01-31T00:00:00Z","NETSCAN-OPENVAS-1.3.6.1.4.1.25623.1.0.171144","Python Improper Input Validation Vulnerability (Jan 2025) - Windows","2025-02-05T00:00:00Z"]