CVE-2026-44446
CVE-2026-44446 affects ERPNext (open-source ERP) with SQL injection in certain endpoints prior to versions 15.104.3 and 16.14.0. The root cause is insufficient input validation in the affected endpoints, enabling an attacker to craft requests that reveal sensitive information. The vulnerability i...