Product

Fuxa-Server (= 1.3.0)

1 brief RSS

FUXA Server Unauthenticated Tag Value Disclosure (CVE-2026-43946)

FUXA server 1.3.0 has an unauthenticated arbitrary tag value disclosure vulnerability (CVE-2026-43946); an authorization bypass in the /api/getTagValue endpoint allows unauthenticated access to tag values when the referenced script does not exist.

fuxa-server authorization-bypass information-disclosure cve

2r 1t 57m ago