HIGH 7.5
GHSA-wwfj-h843-3hrq
FUXA local file inclusion vulnerability
Details
FUXA <= 1.1.12 is vulnerable to Local File Inclusion via `/api/download`.
Are you affected?
Enter the version of the package you're using.
Affected packages
npm / fuxa-server
Introduced in:
0 No fixed version published yet for fuxa-server (npm). Pin to a known-safe version or switch to an alternative.