CNNVD-202602-1410 Information

Feb 09, 2026 cve

CNNVD ID

CNNVD-202602-1410

CVE-2026-25894

  • CNNVD Published: 2026-02-09

Description (Chinese)

FUXA是frangoteam开源的一个基于web的过程可视化软件。 FUXA 1.2.9及之前版本存在安全漏洞,该漏洞源于不安全默认配置,可能导致未经验证的远程攻击者获得管理员权限并执行任意代码。

Description (English)

FUXA is a web-based process visualization software that is an open source for francoteam. FUXA 1.2.9 and previous versions have a security loophole, which stems from unsafe default configurations, which may lead uncertified remote attackers to access administrator privileges and enforce arbitrary codes.

Vulnerability Type

其他

Affected Vendor

frangoteam

Published

2026-02-09

Last Modified

2026-02-24

References

https://github.com/frangoteam/FUXA/commit/ea7b3df066f9fdef8ecdce318398ae40546bc50d https://github.com/frangoteam/FUXA/releases/tag/v1.2.10 https://github.com/frangoteam/FUXA/security/advisories/GHSA-32cc-x95p-fxcg

Patch

https://github.com/frangoteam/FUXA/releases/

Share on: