Launch Week Day 1: Announcing Security Design Review

FUXA local file inclusion vulnerability

GHSA-wwfj-h843-3hrq · CVE-2023-31718

Published Sep 22, 2023 · Modified Nov 8, 2023

Description

FUXA <= 1.1.12 is vulnerable to Local File Inclusion via /api/download.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-31718
WEB https://github.com/MateusTesser/CVE-2023-31718
PACKAGE https://github.com/frangoteam/FUXA
WEB https://youtu.be/VCQkEGntN04

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes