4 matches found
EUVD-2024-43551
Malicious code in bioql PyPI...
CVE-2024-49751 Frappe Press possible HTML injection through SaaS Signup inputs
Press, a Frappe custom app that runs Frappe Cloud, manages infrastructure, subscription, marketplace, and software-as-a-service SaaS. Prior to commit 5d118a902872d7941f099ad1fb918e2421e79ccd, a user could inject HTML through SaaS signup inputs. The user who injected the unsafe HTML code would onl...
CVE-2024-49751
CVE-2024-49751 affects Press (a Frappe-based app) prior to commit 5d118a902872d7941f099ad1fb918e2421e79ccd. The issue allows a user to inject HTML through SaaS signup inputs, with impact limited to the submitting user, not other users. The underlying cause is unsafe HTML handling in SaaS signup f...
CVE-2024-49751 Frappe Press possible HTML injection through SaaS Signup inputs
Press, a Frappe custom app that runs Frappe Cloud, manages infrastructure, subscription, marketplace, and software-as-a-service SaaS. Prior to commit 5d118a902872d7941f099ad1fb918e2421e79ccd, a user could inject HTML through SaaS signup inputs. The user who injected the unsafe HTML code would onl...