Frappe ERPNext SQL Injection Vulnerability (CNVD-2019-17164)
Frappe ERPNext is an open source ERP Enterprise Resource Planning system. The system includes functions for financial management, inventory management, customer relationship management, project management and human resource management. A SQL injection vulnerability exists in the 'searchfield'...