2 matches found
EUVD-2026-9883
Frappe is a full-stack web application framework. Prior to versions 14.100.1 and 15.100.0, an endpoint was vulnerable to SQL injection through specially crafted requests, which would allow a malicious actor to extract sensitive information. This issue has been patched in versions 14.100.1 and...
Frappe SQL注入漏洞
Frappe is a web development framework based on Python and Mariadb, with integrated front-end pages, developed by the Indian company Frappe. Versions of Frappe prior to 14.100.1 and 15.100.0 have a SQL injection vulnerability. This vulnerability arises from the lack of validation for specially...