CVE-2026-42945

This repository contains a functional exploit for CVE-2026-42945, a heap buffer overflow in NGINX's `ngx_http_rewrite_module` that allows unauthenticated remote code execution. The exploit leverages heap feng shui to corrupt adjacent memory structures and achieve arbitrary command execution.

This repository contains a Python-based scanner that detects the presence of vulnerable NGINX configuration patterns associated with CVE-2026-42945 (NGINX Rift). It identifies high-risk sequences involving `rewrite` directives with `?` followed by references to unnamed PCRE captures like `$1` or `$2`.

This repository contains a functional exploit for CVE-2026-42945, a heap buffer overflow in NGINX's rewrite module. The exploit leverages a vulnerability where rewrite and set directives cause a length mismatch during URI processing, leading to remote code execution (RCE) under specific conditions.

This repository contains a static analysis tool for detecting NGINX configurations vulnerable to CVE-2026-42945, a heap buffer overflow in the `ngx_http_rewrite_module`. It scans NGINX configuration files for high-risk rewrite patterns but does not exploit the vulnerability.

This repository contains a Python-based detection script for CVE-2026-42945, a heap buffer overflow in NGINX's rewrite module. The script checks for vulnerability by triggering a worker crash and does not attempt RCE.

This repository contains a functional proof-of-concept for CVE-2026-42945, a heap buffer overflow in NGINX's rewrite module. It includes a detailed analysis, Docker setup for vulnerable NGINX, and a Python script to trigger the DoS condition.

This repository provides a detailed technical analysis of CVE-2026-42945, a heap buffer overflow in NGINX's `ngx_http_rewrite_module` due to unpropagated flags during two-pass script processing. The writeup includes root cause analysis, exploitation mechanics, and mitigation steps, but does not contain functional exploit code.

This repository contains a functional exploit for CVE-2026-42945, targeting a heap buffer overflow in NGINX's ngx_http_rewrite_module. The exploit leverages a two-pass script engine bug to achieve remote code execution (RCE) via crafted URI requests and heap spraying techniques.

This repository provides a technical writeup for CVE-2026-42945, a heap-based buffer overflow in NGINX's rewrite module, leading to pre-auth RCE. It includes details on affected versions, CVSS scores, and references an external PoC source.

This repository contains functional exploit code for CVE-2026-42945, a heap buffer overflow in NGINX's rewrite module. It includes both a reconnaissance helper and a standalone exploit capable of command execution and reverse shell establishment.

This repository provides a defensive lab environment for analyzing CVE-2026-42945, focusing on NGINX rewrite configuration risks. It includes scripts for evidence collection, configuration analysis, and benign testing, along with detailed documentation for defensive practices.

This repository contains a functional exploit for CVE-2026-42945, targeting an NGINX vulnerability with ASLR disabled via heap spray technique. The exploit includes a reverse shell payload and detailed exploitation logic.

This repository provides a detailed technical analysis and automated remediation script for CVE-2026-42945, an NGINX vulnerability involving memory corruption due to inconsistent request content length calculations in rewrite rules. The script automates detection, backup, upgrade, and rollback processes for affected systems.

The repository contains only a minimal README with no technical details, exploit code, or meaningful content related to CVE-2026-42945. It appears to be a placeholder or stub.

This repository provides a detailed technical analysis and remediation for CVE-2026-42945, including a backported patch, regression tests, and VEX documentation for an nginx vulnerability. It demonstrates the vulnerability through a regression test and includes build scripts for a patched nginx image.

This repository contains a functional Go-based exploit for CVE-2026-42945, targeting nginx HTTP/2 vulnerabilities. It includes multiple modes for detection, worker crash probing, command execution, and reverse shell capabilities, with detailed usage instructions and a Docker-based testing environment.

This repository contains a functional Python-based PoC for CVE-2026-42945, a heap buffer overflow in NGINX triggered by URI encoding/decoding mismatches. The exploit demonstrates DoS by sending crafted HTTP requests with '%25' characters to exploit a vulnerability in NGINX's rewrite and set directives.

This repository contains a functional exploit for CVE-2026-42945, targeting an NGINX vulnerability (referred to as 'Rift'). The exploit leverages heap spraying and memory corruption to achieve remote code execution (RCE) by manipulating heap structures and triggering a system() call with attacker-controlled arguments.

This repository provides a defensive scanner for CVE-2026-42945 (NGINX Rift), a heap buffer overflow in the `ngx_http_rewrite_module`. The scanner checks NGINX versions, configuration patterns, and ASLR status without sending exploit payloads.

The repository contains a functional exploit framework for CVE-2026-42945, a critical heap buffer overflow in nginx's `ngx_http_rewrite_module`, enabling RCE. It includes a scanner for 53 nginx CVEs, automated fingerprinting, WAF bypass techniques, and a Docker-based vulnerable lab for testing.

This repository contains a Python-based tool that audits nginx and Apache configurations for known CVEs, including CVE-2026-42945, by checking both version ranges and configuration patterns. It does not include exploit code but provides detailed detection logic for vulnerabilities.

This repository contains a functional exploit for CVE-2026-42945, targeting nginx 1.30.0 (32-bit). It includes a Docker-based lab environment, a heap out-of-bounds (OOB) write trigger, and two RCE exploitation paths: a lab-assisted known-address validator and a remote brute-force driver.

This repository provides local scripts to detect Nginx, OpenResty, or Tengine instances potentially vulnerable to CVE-2026-42945, a heap-based buffer overflow in the `ngx_http_rewrite_module`. The scripts scan for risky `rewrite` patterns but do not exploit the vulnerability.

This repository provides a detailed defensive lab for CVE-2026-42945, focusing on using Wazuh SCA to detect vulnerable NGINX configurations and unpatched versions. It includes technical analysis, remediation steps, and SCA policy deployment without containing exploit code.

This repository contains a functional exploit for CVE-2026-42945, a heap buffer overflow in NGINX's `ngx_http_rewrite_module` that allows unauthenticated remote code execution. The exploit leverages heap feng shui to corrupt adjacent memory structures and achieve RCE via a crafted HTTP request.

This repository provides a risk assessment script for CVE-2026-42945, a heap buffer overflow vulnerability in nginx's ngx_http_rewrite_module. The script checks for vulnerable versions, triggering configurations, ASLR status, and compilation hardening to determine the actual risk level.

This repository contains a functional exploit for CVE-2026-42945, a heap buffer overflow in the NGINX rewrite module leading to RCE. It includes detailed technical analysis, PoC scripts, and Docker environments for testing against NGINX and OpenResty.

This repository contains a Python-based scanner for detecting Nginx instances vulnerable to CVE-2026-42945 by checking the 'Server' header in HTTP/HTTPS responses. It supports IP, CIDR, and ASN inputs, with multi-threaded scanning and DNS resolution.

This repository contains a Python-based scanner for detecting Nginx instances vulnerable to CVE-2026-42945 by checking the 'Server' header in HTTP/HTTPS responses. It supports IP, CIDR, and ASN inputs, with multi-threaded scanning and DNS resolution.

This repository contains a functional PoC for CVE-2026-42945, a heap buffer overflow in nginx's `ngx_http_rewrite_module` due to stale script-engine state. The PoC includes a reproduction script and trigger payload that demonstrates the vulnerability in a local ASan-enabled nginx build.

This repository contains a functional exploit for CVE-2026-42945, a heap buffer overflow in NGINX's `ngx_http_rewrite_module` that allows unauthenticated remote code execution. The exploit leverages heap feng shui to corrupt adjacent memory structures and achieve arbitrary command execution.

This repository contains a functional exploit PoC for CVE-2026-42945, a heap-based buffer overflow in NGINX's ngx_http_rewrite_module. The exploit supports multiple methods (RCE, DoS, file write) and includes detailed technical explanations of the vulnerability and exploitation process.

This repository contains a static scanner for NGINX configuration files that detects the rewrite/set pattern associated with CVE-2026-42945. It includes both Python and Go implementations that parse NGINX configs and identify vulnerable location blocks.

This repository contains a functional exploit for CVE-2026-42945, a heap buffer overflow in NGINX's rewrite module. The exploit includes scripts for reconnaissance, command execution, and reverse shell establishment, targeting vulnerable NGINX versions.

This repository contains a functional exploit for CVE-2026-42945, a heap buffer overflow in NGINX's `ngx_http_rewrite_module` that allows unauthenticated remote code execution. The exploit leverages heap feng shui to corrupt adjacent memory structures and achieve arbitrary command execution.