Vulnerabilities > Frangoteam > Fuxa > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-22 | CVE-2023-31719 | SQL Injection vulnerability in Frangoteam Fuxa FUXA <= 1.1.12 is vulnerable to SQL Injection via /api/signin. | 9.8 |
| 2023-09-18 | CVE-2023-33831 | Command Injection vulnerability in Frangoteam Fuxa 1.1.13 A remote command execution (RCE) vulnerability in the /api/runscript endpoint of FUXA 1.1.13 allows attackers to execute arbitrary commands via a crafted POST request. | 9.8 |