Description
A SQL Injection attack in FUXA <= 1.1.12 allows exfiltration of confidential information from the database.
Remediation
References
https://github.com/frangoteam/FUXA
https://github.com/MateusTesser/CVE-2023-31717
https://youtu.be/IBMXTEI_5wY
Related Vulnerabilities
CVE-2022-24823 Vulnerability in maven package io.netty:netty-common
CVE-2021-31712 Vulnerability in npm package react-draft-wysiwyg
CVE-2021-39199 Vulnerability in npm package remark-html
CVE-2019-1010260 Vulnerability in maven package com.github.shyiko:ktlint
CVE-2021-4040 Vulnerability in maven package org.apache.activemq:artemis-commons