SQL Injection Vulnerability in FUXA by Frango Team
CVE-2023-31717
7.5HIGH
Key Information:
- Vendor
Frangoteam
- Status
- Vendor
- CVE Published:
- 22 September 2023
Badges
๐พ Exploit Exists๐ก Public PoC
What is CVE-2023-31717?
A SQL Injection vulnerability in the FUXA platform, specifically versions up to 1.1.12, permits attackers to perform unauthorized database queries. This exploit can lead to the unauthorized exfiltration of sensitive information, posing a significant threat to user data integrity and confidentiality.
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
