Erpnext Security Vulnerabilities and Issues — Erpnext CVE List

Lucene search

FrappeErpnext

3 matches found

CVE•added 2018/05/22 1:29 a.m.•56 views

CVE-2018-11339

An XSS issue was discovered in Frappe ERPNext v11.x.x-develop b1036e5 via a comment.

6.1CVSS5.8AI score0.05584EPSS

CVE•added 2020/03/18 7:15 p.m.•52 views

CVE-2019-20511

ERPNext 11.1.47 allows blog?blog_category= Frame Injection.

6.1CVSS6.2AI score0.00328EPSS

CVE•added 2022/08/22 5:15 p.m.•51 views

CVE-2022-28598

Frappe ERPNext 12.29.0 is vulnerable to XSS where the software does not neutralize or incorrectly neutralize user-controllable input before it is placed in output that is used as a web page that is served to other users.

6.1CVSS5.9AI score0.03696EPSS