[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":3,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":10,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":16,"vulnerability-29418":23,"all-banners":42},["Island",4],{"key":5,"params":6,"result":8},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":7},"{}",{"head":9},{},["Island",11],{"key":12,"params":13,"result":14},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":7},{"head":15},{},["Island",17],{"key":18,"params":19,"result":21},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":20},"{\"text-color\":\"gray\"}",{"head":22},{},{"id":24,"detectable_with":25,"vuln_details":32,"vuln_id":39,"name":40,"published":41,"updated":33},29418,{"tool":26,"engine":29},{"id":27,"name":28},1,"Network Scanner",{"id":30,"name":31},2,"Nuclei",{"id":24,"codename":33,"description":33,"severity":34,"risk_description":35,"public_description":36,"public_recommendation":37,"recommendation":33,"references":33,"cvssv3":33,"epss_score":33,"epss_percentile":33,"cve":33,"in_cisa_catalog":38,"date":33,"software_type":33,"vendor":33,"product":33,"ptt_exploit_capabilities":33},null,"critical","The risk exists that an attacker can use the vulnerability identified to perform further attacks on the server.","Weaver Ecology exposes a debug API endpoint that allows invocation of `cn.hutool.core.util.RuntimeUtil.execForStr`, resulting in remote command execution. Successful exploitation allows an attacker to execute arbitrary operating system commands on the target server.","We recommend reviewing the purpose of the application or the server and applying patches, if applicable.",false,"NETSCAN-NUCLEI-VULNERABILITIES-ECOLOGY-EXECFORSTR-RCE","Weaver Ecology ExecForStr Remote Command Execution","2026-06-25T00:00:00Z",[43,54,60,69,76],{"title":44,"slug":45,"text":46,"link":47,"external":48,"targets":49,"cta":51,"variant":52,"campaign_id":53},"NGINX Rift free scanner - CVE-2026-42945 - CVE Page","nginx-rift-cve-page","🚨 New: FREE SCANNER for NGINX Rift (CVE-2026-42945). No account needed.","https://pentest-tools.com/network-vulnerability-scanning/cve-2026-42945-scanner-nginx-rift",true,[50],"/vulnerabilities-exploits/nginx-heap-buffer-overflow_29311","Scan for free","secondary","nginx-rift",{"title":55,"slug":56,"text":57,"link":47,"external":48,"targets":58,"cta":51,"variant":52,"campaign_id":53},"NGINX Rift free scanner - CVE-2026-42945 -blog","nginx-rift-blog","🚨 New: free scanner for NGINX Rift (CVE-2026-42945). Check your targets now.",[59],"/blog",{"title":61,"slug":62,"text":63,"link":64,"external":48,"targets":65,"cta":67,"variant":52,"campaign_id":68},"phpBB authentication bypass - VulnDB homepage","phpbb-authentication-bypass-vulndb","Detect 2 new CVEs our research team discovered in phpBB","https://pentest-tools.com/vulnerabilities-exploits/phpbb-authentication-bypass_29369",[66],"/vulnerabilities-exploits","See the details","phpbb-authentication-bypass",{"title":70,"slug":71,"text":72,"link":73,"external":48,"targets":74,"cta":75,"variant":52,"campaign_id":68},"phpBB authentication bypass - CVE page","phpbb-authentication-bypass-cve","See how our research team discovered these 2 new CVEs in phpBB","https://pentest-tools.com/research/phpbb-authentication-bypass",[66],"Read the research",{"title":77,"slug":78,"text":63,"link":64,"external":48,"targets":79,"cta":67,"variant":52,"campaign_id":68},"phpBB authentication bypass - Sniper","phpbb-authentication-bypass-sniper",[80],"/exploit-helpers/sniper"]