Description
FUXA <= 1.1.12 is vulnerable to SQL Injection via /api/signin.
Remediation
References
https://github.com/MateusTesser/CVE-2023-31719
https://youtu.be/cjb2KYpV6dY
https://github.com/frangoteam/FUXA
Related Vulnerabilities
CVE-2020-2181 Vulnerability in maven package org.jenkins-ci.plugins:credentials-binding
CVE-2020-7684 Vulnerability in npm package rollup-plugin-serve-favicon
CVE-2018-14730 Vulnerability in npm package browserify-hmr
CVE-2019-19771 Vulnerability in npm package cionstring
CVE-2019-10378 Vulnerability in maven package org.jenkins-ci.plugins:testlink