CVE-2026-25895 | frangoteam FUXA up to 1.2.9 SCADA/HMI/Dashboard path traversal (GHSA-88qh-cphv-996c)

Inserito da Angelo Barbosa | Feb 10, 2026 | CVE

A vulnerability, which was classified as critical, was found in frangoteam FUXA up to 1.2.9. Affected by this issue is some unknown functionality of the component SCADA/HMI/Dashboard. The manipulation results in path traversal.

This vulnerability is known as CVE-2026-25895. It is possible to launch the attack remotely. No exploit is available.

You should upgrade the affected component.

CVE-2026-25895 | frangoteam FUXA up to 1.2.9 SCADA/HMI/Dashboard path traversal (GHSA-88qh-cphv-996c)

Post correlati

CVE-2026-22985 | Linux Kernel up to 6.18.5/6.19-rc4 idpf ndo_open null pointer dereference

CVE-2025-0848 | Tenda A18 up to 15.13.07.09 HTTP POST Request /goform/SetCmdlineRun wpapsk_crypto5g stack-based overflow

CVE-2025-69421 | OpenSSL up to 3.6.0 PKCS#12 PKCS12_item_decrypt_d2i_ex null pointer dereference

CVE-2024-41957 | vim up to 9.1.0646 src/alloc.c double free (GHSA-f9cr-gv85-hcr4 / 8a0bbe7b8aad6f8da28dee218c01bc8a0185a)