[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":3,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":10,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":16,"all-banners":23,"vulnerability-2250":62},["Island",4],{"key":5,"params":6,"result":8},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":7},"{}",{"head":9},{},["Island",11],{"key":12,"params":13,"result":14},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":7},{"head":15},{},["Island",17],{"key":18,"params":19,"result":21},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":20},"{\"text-color\":\"gray\"}",{"head":22},{},[24,35,41,50,57],{"title":25,"slug":26,"text":27,"link":28,"external":29,"targets":30,"cta":32,"variant":33,"campaign_id":34},"NGINX Rift free scanner - CVE-2026-42945 - CVE Page","nginx-rift-cve-page","🚨 New: FREE SCANNER for NGINX Rift (CVE-2026-42945). No account needed.","https://pentest-tools.com/network-vulnerability-scanning/cve-2026-42945-scanner-nginx-rift",true,[31],"/vulnerabilities-exploits/nginx-heap-buffer-overflow_29311","Scan for free","secondary","nginx-rift",{"title":36,"slug":37,"text":38,"link":28,"external":29,"targets":39,"cta":32,"variant":33,"campaign_id":34},"NGINX Rift free scanner - CVE-2026-42945 -blog","nginx-rift-blog","🚨 New: free scanner for NGINX Rift (CVE-2026-42945). Check your targets now.",[40],"/blog",{"title":42,"slug":43,"text":44,"link":45,"external":29,"targets":46,"cta":48,"variant":33,"campaign_id":49},"phpBB authentication bypass - VulnDB homepage","phpbb-authentication-bypass-vulndb","Detect 2 new CVEs our research team discovered in phpBB","https://pentest-tools.com/vulnerabilities-exploits/phpbb-authentication-bypass_29369",[47],"/vulnerabilities-exploits","See the details","phpbb-authentication-bypass",{"title":51,"slug":52,"text":53,"link":54,"external":29,"targets":55,"cta":56,"variant":33,"campaign_id":49},"phpBB authentication bypass - CVE page","phpbb-authentication-bypass-cve","See how our research team discovered these 2 new CVEs in phpBB","https://pentest-tools.com/research/phpbb-authentication-bypass",[47],"Read the research",{"title":58,"slug":59,"text":44,"link":45,"external":29,"targets":60,"cta":48,"variant":33,"campaign_id":49},"phpBB authentication bypass - Sniper","phpbb-authentication-bypass-sniper",[61],"/exploit-helpers/sniper",{"id":63,"detectable_with":64,"vuln_details":71,"vuln_id":90,"name":91,"published":92,"updated":72},2250,{"tool":65,"engine":68},{"id":66,"name":67},1,"Network Scanner",{"id":69,"name":70},2,"Nuclei",{"id":63,"codename":72,"description":72,"severity":73,"risk_description":74,"public_description":75,"public_recommendation":76,"recommendation":72,"references":77,"cvssv3":83,"epss_score":84,"epss_percentile":85,"cve":86,"in_cisa_catalog":88,"date":89,"software_type":72,"vendor":72,"product":72,"ptt_exploit_capabilities":72},null,"critical","Successful exploitation of this vulnerability could allow an attacker to execute arbitrary SQL queries, potentially leading to unauthorized access, data manipulation.","WordPress NotificationX plugin prior to 2.3.9 contains a SQL injection vulnerability. The plugin does not sanitize and escape the nx_id parameter before using it in a SQL statement, leading to an unauthenticated blind SQL injection. An attacker can possibly obtain sensitive information, modify data, and/or execute unauthorized administrative operations in the context of the affected site.","Update to the latest version of the WordPress NotificationX plugin (2.3.9 or higher) to mitigate the SQL Injection vulnerability.",[78,79,80,81,82],"https://wpscan.com/vulnerability/1d0dd7be-29f3-4043-a9c6-67d02746463a","https://wordpress.org/plugins/notificationx/advanced/","https://nvd.nist.gov/vuln/detail/CVE-2022-0349","https://github.com/ARPSyndicate/cvemon","https://github.com/ARPSyndicate/kenzer-templates",9.8,0.34359,0.98203,[87],"CVE-2022-0349",false,"2022-03-07T00:00:00Z","NETSCAN-NUCLEI-CVE-CVE-2022-0349","WordPress NotificationX \u003C2.3.9 - SQL Injection","2023-07-04T00:00:00Z"]