Lucene search
K

Exploit for CVE-2025-56380

๐Ÿ—“๏ธย 01 Oct 2025ย 19:14:57Reported byย MoAlaliTypeย 
githubexploit
ย githubexploit
๐Ÿ”—ย github.com๐Ÿ‘ย 426ย Views

Authenticated users can trigger time-based blind SQL injection in Frappe ERPNext via fieldname in get_value.

Related
ReporterTitlePublishedViews
Family
Circl
CVE-2025-56380
1 Oct 202523:00
โ€“circl
CNNVD
Frappe Technologies Frappe Framework ๅฎ‰ๅ…จๆผๆดž
2 Oct 202500:00
โ€“cnnvd
CVE
CVE-2025-56380
2 Oct 202500:00
โ€“cve
Cvelist
CVE-2025-56380
2 Oct 202500:00
โ€“cvelist
EUVD
EUVD-2025-32134
3 Oct 202520:07
โ€“euvd
NVD
CVE-2025-56380
2 Oct 202514:15
โ€“nvd
OSV
CVE-2025-56380
2 Oct 202514:15
โ€“osv
Packet Storm
๐Ÿ“„ ERPNext 15.67.0 / Frappe 15.72.4 Blind SQL Injection
2 Oct 202500:00
โ€“packetstorm
Positive Technologies
PT-2025-40353
2 Oct 202500:00
โ€“ptsecurity
RedhatCVE
CVE-2025-56380
3 Oct 202500:45
โ€“redhatcve
Rows per page

Data

Build on a solid foundation withย Vulners data

Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data

Api

Power your application withย Vulners API

The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access

App

Assess and manage vulnerabilities withย Vulnersย tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

01 Oct 2025 19:22Current
8.4High risk
Vulners AI Score8.4
EPSS0.00293
426