3 matches found
FUXA SQL Injection vulnerability
FUXA = 1.1.12 is vulnerable to SQL Injection via /api/signin...
CVE-2023-31717
A SQL Injection attack in FUXA = 1.1.12 allows exfiltration of confidential information from the database...
PT-2023-23429 · Fuxa · Fuxa
Name of the Vulnerable Software and Affected Versions: FUXA versions 1.1.12 and earlier Description: The issue is related to a Local File Inclusion vulnerability. It can be exploited via the file parameter, specifically by accessing the fuxa.log file. Recommendations: For versions 1.1.12 and...