Description
FUXA <= 1.1.12 is vulnerable to Local via Inclusion via /api/download.
Remediation
References
https://github.com/MateusTesser/CVE-2023-31718
https://github.com/frangoteam/FUXA
https://youtu.be/VCQkEGntN04
Related Vulnerabilities
CVE-2020-28270 Vulnerability in npm package object-hierarchy-access
CVE-2016-1000229 Vulnerability in npm package swagger-ui
CVE-2022-36919 Vulnerability in maven package org.jenkins-ci.plugins:coverity
CVE-2020-9495 Vulnerability in maven package org.apache.archiva:archiva
CVE-2021-21290 Vulnerability in maven package io.netty:netty-handler