{"uuid": "d4589600-d699-4c51-aa53-38cc58d48cc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42945", "type": "seen", "source": "https://mstdn.social/users/jschauma/statuses/116570913453757279", "content": "CVE-2026-42945: Possible RCE in NGINX:\nhttps://depthfirst.com/nginx-rift\nRequires a specific regex based rewrite directive like\nrewrite ^/users/([0-9]+)/profile/(.*)$ /profile.php?id=$1&tab=$2 last;\nhttps://my.f5.com/manage/s/article/K000161019\n(Of course also found & published by some AI platform. At least they told F5 first.)\nAnd there's a bunch of other vulns in nginx that just dropped, but good luck keeping track if the list of security advisories contains no dates:\nhttps://nginx.org/en/security_advisories.html", "creation_timestamp": "2026-05-14T03:56:21.171214Z"}