Filters

Software

frappe erpnext
17
frappe frappe
13
frappe frappe lms
2

Frappe FrappeFrappe Authenticated Reflected Cross site scripting (XSS) in portal pages

medium
5.4
EPSS
0.05%
First published (updated )
CVE-2024-24812

Frappe FrappeFrappe vulnerable to HTML injection by any Desk user

medium
5.4
First published (updated )
CVE-2023-46127

Frappe Frappe LmsCross-site Scripting (XSS) - Generic in frappe/lms

high
7.1
First published (updated )
CVE-2023-5555

Frappe Frappe LmsFrappe LMS SQL Injection Issue on People Page

critical
9.8
First published (updated )
CVE-2023-42807

Frappe FrappePossibility limited SQL injection due to insufficient validation in Frappe

high
7.5
First published (updated )
CVE-2023-41328

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Frappe FrappePath Traversal

medium
6.5
First published (updated )
CVE-2022-41712

Frappe FrappeFrappe Search navbar_search.html cross site scripting

medium
6.1
First published (updated )
CVE-2022-3988

Frappe ERPNextXSS

medium
6.1
First published (updated )
CVE-2022-28598

Frappe ERPNextERPNext - Stored XSS in My Settings

medium
5.4
First published (updated )
CVE-2022-23058

Frappe ERPNextERPNext - Stored XSS in My Profile

medium
5.4
First published (updated )
CVE-2022-23057

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Frappe ERPNextERPNext - Stored XSS leads to account takover

medium
5.4
First published (updated )
CVE-2022-23056

Frappe ERPNextERPNext - Improper user access conrol

medium
5.5
First published (updated )
CVE-2022-23055

Frappe FrappeFrappe Framework 12 and 13 does not properly validate the HTTP method for the frappe.client API.

medium
5.3
First published (updated )
CVE-2020-35175

Frappe FrappeIn two-factor authentication, the system also sending 2fa secret key in response, which enables an i…

high
7.5
First published (updated )
CVE-2020-27508

Frappe ERPNextSQL Injection

high
8.8
First published (updated )
CVE-2020-6145

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Frappe ERPNextXSS

high
7.4
First published (updated )
CVE-2019-20521

Frappe ERPNextXSS

high
7.4
First published (updated )
CVE-2019-20520

Frappe ERPNextXSS

high
7.4
First published (updated )
CVE-2019-20519

Frappe ERPNextXSS

high
7.4
First published (updated )
CVE-2019-20518

Frappe ERPNextXSS

high
7.4
First published (updated )
CVE-2019-20517

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Frappe ERPNextXSS

high
7.4
First published (updated )
CVE-2019-20516

Frappe ERPNextXSS

high
7.4
First published (updated )
CVE-2019-20515

Frappe ERPNextXSS

high
7.4
First published (updated )
CVE-2019-20514

Frappe ERPNextXSS

medium
6.1
First published (updated )
CVE-2019-20511

Frappe FrappeIn core/doctype/prepared_report/prepared_report.py in Frappe 11 and 12, data files generated with Pr…

high
7.5
First published (updated )
CVE-2019-20529

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Frappe FrappeXSS

medium
6.1
First published (updated )
CVE-2019-15700

Frappe FrappeCode Injection

critical
9.8
First published (updated )
CVE-2019-14965

Frappe FrappeSQL Injection

high
8.8
First published (updated )
CVE-2019-14966

Frappe FrappeXSS

medium
6.1
First published (updated )
CVE-2019-14967

Frappe ERPNextSQL Injection

high
7.5
First published (updated )
CVE-2018-20061

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Frappe ERPNextXSS

medium
6.1
First published (updated )
CVE-2018-11339

Frappe FrappeSQL Injection

high
8.8
First published (updated )
CVE-2017-1000120

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203