Filters

Frappe FrappeFrappe Authenticated Reflected Cross site scripting (XSS) in portal pages

EPSS
0.05%
First published (updated )

Frappe FrappeFrappe vulnerable to HTML injection by any Desk user

First published (updated )

Frappe Frappe LmsCross-site Scripting (XSS) - Generic in frappe/lms

7.1
First published (updated )

Frappe Frappe LmsFrappe LMS SQL Injection Issue on People Page

First published (updated )

Frappe FrappePossibility limited SQL injection due to insufficient validation in Frappe

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frappe FrappePath Traversal

First published (updated )

Frappe FrappeFrappe Search navbar_search.html cross site scripting

First published (updated )

Frappe ERPNextXSS

First published (updated )

Frappe ERPNextERPNext - Stored XSS in My Settings

First published (updated )

Frappe ERPNextERPNext - Stored XSS leads to account takover

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frappe ERPNextERPNext - Stored XSS in My Profile

First published (updated )

Frappe ERPNextERPNext - Improper user access conrol

First published (updated )

Frappe FrappeFrappe Framework 12 and 13 does not properly validate the HTTP method for the frappe.client API.

First published (updated )

Frappe FrappeIn two-factor authentication, the system also sending 2fa secret key in response, which enables an i…

7.5
First published (updated )

Frappe ERPNextSQL Injection

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frappe ERPNextXSS

7.4
First published (updated )

Frappe ERPNextXSS

7.4
First published (updated )

Frappe ERPNextXSS

7.4
First published (updated )

Frappe ERPNextXSS

7.4
First published (updated )

Frappe ERPNextXSS

7.4
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frappe ERPNextXSS

7.4
First published (updated )

Frappe ERPNextXSS

7.4
First published (updated )

Frappe ERPNextXSS

7.4
First published (updated )

Frappe ERPNextXSS

First published (updated )

Frappe FrappeIn core/doctype/prepared_report/prepared_report.py in Frappe 11 and 12, data files generated with Pr…

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frappe FrappeXSS

First published (updated )

Frappe FrappeCode Injection

First published (updated )

Frappe FrappeSQL Injection

8.8
First published (updated )

Frappe FrappeXSS

First published (updated )

Frappe ERPNextSQL Injection

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frappe ERPNextXSS

First published (updated )

Frappe FrappeSQL Injection

8.8
First published (updated )

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203