CVE-2025-52042

In Frappe ERPNext 15.57.5, the function getrfqcontainingsupplier at erpnext/buying/doctype/requestforquotation/requestforquotation.py is vulnerable to SQL Injection, which allows an attacker to extract all information from databases by injecting SQL query via the txt parameter...

Threat Outbreak Alert RuleID29302: Email Messages Distributing Malicious Software on May 29, 2017

Medium Alert ID: 53991 First Published: 2017 May 30 18:46 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29302 may contain the following files: Name | Size...

Threat Outbreak Alert RuleID23888: Email Messages Distributing Malicious Software on July 19, 2016

Medium Alert ID: 47133 First Published: 2016 July 19 19:34 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID23888 may contain the following files: Name | Siz...

Threat Outbreak Alert: Fake Product Quotation Request Email Messages on March 5, 2014.

Medium Alert ID: 33215 First Published: 2014 March 6 15:04 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product quotation request for the recipient. The text in the email message attempts to convince the recipient t...