Description
A SQL Injection attack in FUXA <= 1.1.12 allows exfiltration of confidential information from the database.
Remediation
References
https://youtu.be/IBMXTEI_5wY
https://github.com/MateusTesser/CVE-2023-31717
https://github.com/frangoteam/FUXA
Related Vulnerabilities
CVE-2022-25876 Vulnerability in npm package link-preview-js
CVE-2021-23341 Vulnerability in maven package org.webjars.npm:prismjs
CVE-2021-23337 Vulnerability in maven package org.webjars:lodash
CVE-2022-41828 Vulnerability in maven package com.amazon.redshift:redshift-jdbc42
CVE-2021-27807 Vulnerability in maven package org.apache.pdfbox:pdfbox