CVE-2023-31718 - Local File Inclusion in FUXA <= 1.1.12 via /api/download Endpoint
FUXA is an open-source web-based SCADA (Supervisory Control and Data Acquisition) software written in Node.js, widely used for industrial process monitoring. In early 2023,
CVE-2023-31719 - Breaking Down the FUXA ≤ 1.1.12 SQL Injection via /api/signin
*Published: June 2024*
FUXA, an open-source web-based SCADA automation software, allows users to manage their industrial environments. However, versions up to and including 1.1.
CVE-2023-33831 - How FUXA 1.1.13’s /api/runscript Endpoint Opens the Door to Remote Command Execution (RCE) — Exploit and Defense Explained
The world of open-source industrial software isn’t always safe. In May 2023, a shocking vulnerability—CVE-2023-33831—was disclosed in FUXA, a popular open-source industrial
Episode
00:00:00
00:00:00