logo

Database

NoSQL injection In fuxa-server

Description

FUXA SQL Injection vulnerability FUXA <= 1.1.12 is vulnerable to SQL Injection via /api/signin.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version

Aliases

1. CVE-2023-317192. NVD-2023-317193. OSV-2023-317194. GCVE-2023-31719

References

1. https://github.com/MateusTesser/CVE-2023-317192. https://youtu.be/cjb2KYpV6dY

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.

FLAT-HM3WY – Vulnerability | Fluid Attacks Database