Vulnerabilities > Frangoteam > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-22 | CVE-2023-31716 | Unspecified vulnerability in Frangoteam Fuxa FUXA <= 1.1.12 has a Local File Inclusion vulnerability via file=fuxa.log | 7.5 |
| 2023-09-22 | CVE-2023-31717 | SQL Injection vulnerability in Frangoteam Fuxa A SQL Injection attack in FUXA <= 1.1.12 allows exfiltration of confidential information from the database. | 7.5 |
| 2023-09-22 | CVE-2023-31718 | Unspecified vulnerability in Frangoteam Fuxa FUXA <= 1.1.12 is vulnerable to Local via Inclusion via /api/download. | 7.5 |
| 2022-03-16 | CVE-2021-45851 | Server-Side Request Forgery (SSRF) vulnerability in Frangoteam Fuxa 1.1.3 A Server-Side Request Forgery (SSRF) attack in FUXA 1.1.3 can be carried out leading to the obtaining of sensitive information from the server's internal environment and services, often potentially leading to the attacker executing commands on the server. | 7.5 |