VYPR

Fuxa

by Frangoteam

Source repositories

CVEs (26)

  • CVE-2026-47719higJun 8, 2026
    risk 0.45cvss epss 0.00

    ## Summary An unauthenticated attacker (Alice) connects to FUXA's Socket.IO endpoint and emits a `device-webapi-request` event whose `property.address` field names an arbitrary URL. FUXA's `DEVICE_WEBAPI_REQUEST` handler at `server/runtime/index.js:296` calls…

  • CVE-2026-43947higMay 26, 2026
    risk 0.39cvss epss 0.01

    ### Summary An unauthenticated Remote Code Execution vulnerability exists in FUXA when `secureEnabled` is set to `true`. The `POST /api/runscript` endpoint checks authorization against the stored script's permission by ID, but when `test: true` is set in the request, it…

  • CVE-2026-43946higMay 26, 2026
    risk 0.39cvss epss 0.00

    ### Summary An authorization bypass in the /api/getTagValue endpoint allows unauthenticated access to tag values when the referenced script does not exist. ### Details The issue is caused by the combination of these code paths: - `server/api/apikeys/verify-api-or-token.j…

  • CVE-2026-47717higMay 27, 2026
    risk 0.38cvss epss 0.00

    ### Summary The GET /api/project endpoint exposes sensitive project configuration data to guest-context requests even when secureEnabled is enabled. ### Details File: `server/api/projects/index.js` ```javascript prjApp.get("/api/project", secureFnc, function(req, res) { …

  • CVE-2026-43945higMay 26, 2026
    risk 0.38cvss epss 0.01

    **Pre-auth** RCE in FUXA via Logic Bypass Summary A Critical vulnerability chain exists in FUXA (v.1.3.0-2706) that allows an unauthenticated remote attacker to achieve Full Remote Code Execution (RCE) as root. The exploit succeeds even when the platform is configured in its…

  • CVE-2023-33831Sep 18, 2023
    risk 0.07cvss epss 0.14

    A remote command execution (RCE) vulnerability in the /api/runscript endpoint of FUXA 1.1.13 allows attackers to execute arbitrary commands via a crafted POST request.

  • CVE-2023-31719Sep 21, 2023
    risk 0.05cvss epss 0.27

    FUXA <= 1.1.12 is vulnerable to SQL Injection via /api/signin.

  • CVE-2025-69985Feb 24, 2026
    risk 0.03cvss epss 0.06

    FUXA 1.2.8 and prior contains an Authentication Bypass vulnerability leading to Remote Code Execution (RCE). The vulnerability exists in the server/api/jwt-helper.js middleware, which improperly trusts the HTTP "Referer" header to validate internal requests. A remote…

  • CVE-2023-31718Sep 21, 2023
    risk 0.03cvss epss 0.01

    FUXA <= 1.1.12 is vulnerable to Local via Inclusion via /api/download.

  • CVE-2023-31716Sep 21, 2023
    risk 0.03cvss epss 0.01

    FUXA <= 1.1.12 has a Local File Inclusion vulnerability via file=fuxa.log

  • CVE-2023-31717Sep 21, 2023
    risk 0.02cvss epss 0.02

    A SQL Injection attack in FUXA <= 1.1.12 allows exfiltration of confidential information from the database.

  • CVE-2026-47721Jun 8, 2026
    risk 0.00cvss epss 0.00

    ## Summary An authorization issue in the Scheduler API allowed authenticated non-admin users to create or modify scheduled actions that should be restricted to administrators. ## Details The Scheduler API did not correctly enforce administrator permissions when processing…

  • CVE-2026-47720Jun 8, 2026
    risk 0.00cvss epss 0.00

    ## Summary The TDengine DAQ storage connector's `escapeTdString` at `server/runtime/storage/tdengine/index.js:10` doubles single quotes but does not escape backslashes. TDengine's SQL parser treats `\'` as a literal single quote inside a string, so a tag id of the form `x\' OR…

  • CVE-2026-47718May 28, 2026
    risk 0.00cvss epss 0.00

    ### Summary When `secureEnabled=true`, FUXA `1.3.0-2773` still allows guest and invalid-token requests to read project, alarms, and scheduler APIs. ### Details In secure mode, requests with no token or an explicitly invalid token were still able to access protected read…

  • CVE-2026-25895Feb 9, 2026
    risk 0.00cvss epss 0.03

    FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. A path traversal vulnerability in FUXA allows an unauthenticated, remote attacker to write arbitrary files to arbitrary locations on the server filesystem. This affects FUXA through version 1.2.9. This…

  • CVE-2026-25894Feb 9, 2026
    risk 0.00cvss epss 0.01

    FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. An insecure default configuration in FUXA allows an unauthenticated, remote attacker to gain administrative access and execute arbitrary code on the server. This affects FUXA through version 1.2.9 when…

  • CVE-2026-25893Feb 9, 2026
    risk 0.00cvss epss 0.01

    FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. Prior to 1.2.10, an authentication bypass vulnerability in FUXA allows an unauthenticated, remote attacker to gain administrative access via the heartbeat refresh API and execute arbitrary code on the…

  • CVE-2026-25951Feb 9, 2026
    risk 0.00cvss epss 0.01

    FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. Prior to 1.2.11, there is a flaw in the path sanitization logic allows an authenticated attacker with administrative privileges to bypass directory traversal protections. By using nested traversal…

  • CVE-2026-25939Feb 9, 2026
    risk 0.00cvss epss 0.12

    FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. From 1.2.8 through version 1.2.10, an authorization bypass vulnerability in the FUXA allows an unauthenticated, remote attacker to create and modify arbitrary schedulers, exposing connected ICS/SCADA…

  • CVE-2026-25938Feb 9, 2026
    risk 0.00cvss epss 0.01

    FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. From 1.2.8 through 1.2.10, an authentication bypass vulnerability in FUXA allows an unauthenticated, remote attacker to execute arbitrary code on the server when the Node-RED plugin is enabled. This has…

Page 1 of 2