fuxa-server vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-47721Mediumfuxa-server: FUXA's scheduler API missing admin check enables operator-to-admin escalation via scheduled device…CVE-2026-47720Mediumfuxa-server: FUXA has SQL Injection in its TDengine DAQ connector via backslash bypass of escapeTdStringCVE-2026-47719Highfuxa-server: FUXA: Unauthenticated SSRF via Socket.IO DEVICE_WEBAPI_REQUEST and DEVICE_PROPERTY with response…CVE-2026-47718Mediumfuxa-server: FUXA provides guest and invalid-token access to protected read APIs in secure modeCVE-2026-47717Highfuxa-server: FUXA's Unauthenticated Project Data Disclosure Exposes Server-Side Scripts and Device ConfigurationsCVE-2026-43947Highfuxa-server: FUXA Vulnerable to Unauthenticated Remote Code Execution via Script Test Mode Authorization BypassCVE-2026-43946Highfuxa-server: FUXA has an unauthenticated arbitrary tag value disclosure via /api/getTagValueCVE-2026-25951Highfuxa-server: FUXA Affected by a Path Traversal Sanitization BypassCVE-2026-25939Criticalfuxa-server: FUXA Unauthenticated Remote Arbitrary Scheduler WriteCVE-2026-25938Criticalfuxa-server: FUXA Unauthenticated Remote Code Execution in Node-RED IntegrationCVE-2026-25752Criticalfuxa-server: FUXA Unauthenticated Remote Arbitrary Device Tag WriteCVE-2026-25895Criticalfuxa-server: FUXA Unauthenticated Remote Code Execution via Arbitrary File Write in Upload APICVE-2026-25894Criticalfuxa-server: FUXA Unauthenticated Remote Code Execution via Hardcoded JWT Secret in Default ConfigurationCVE-2026-25751Criticalfuxa-server: FUXA Unauthenticated Exposure of Plaintext Database CredentialsCVE-2026-25893Criticalfuxa-server: FUXA Unauthenticated Remote Code Execution via Admin JWT MintingCVE-2025-69983Highfuxa-server: FUXA allows Remote Code Execution (RCE) via the project import functionality.CVE-2025-69970Highfuxa-server: FUXA contains an insecure default configuration vulnerabilityCVE-2025-69981Highfuxa-server: FUXA contains an Unrestricted File Upload vulnerabilityCVE-2023-31719Criticalfuxa-server: FUXA SQL Injection vulnerabilityCVE-2023-31718Highfuxa-server: FUXA local file inclusion vulnerabilityCVE-2023-31717Highfuxa-server: FUXA SQL Injection vulnerability

Stop the waste.
Protect your environment with Kodem.