VIR Vulnerability Intelligence Relay

Package impact

npm npm / @frangoteam/fuxa

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-43945 high 8.0 8d ago FUXA Vulnerable to Pre-auth RCE via Path Manipulation & Configuration Injection
CVE-2025-69971 high 8.0 4mo ago FUXA has a hardcoded fallback JWT signing secret
CVE-2025-69985 unknown 1.0 3mo ago FUXA has JWT Authentication Bypass via HTTP Referer header spoofing
CVE-2023-31716 unknown 3y ago FUXA vulnerable to Local File Inclusion
CVE-2023-33831 unknown 3y ago A remote command execution (RCE) vulnerability in the /api/runscript endpoint of FUXA
CVE-2021-45851 unknown 4y ago Server-Side Request Forgery in FUXA