Latest version: v0.0.1
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| CVE-2025-30217 | 76175 |
SQL injection could be achieved via a specially crafted request, whic… |
|
- | - |
| CVE-2025-30213 | 76176 |
A system user was able to create certain documents in a specific way … |
|
- | - |
| CVE-2025-30214 | 76174 |
Making crafted requests could lead to information disclosure that cou… |
|
- | - |
| CVE-2025-30212 | 76177 |
An SQL Injection vulnerability has been identified in Frappe Framewor… |
|
- | - |
| CVE-2023-41328 | 70411 |
Frappe is a low code web framework written in Python and Javascript. … |
|
HIGH | 7.5 |
| CVE-2019-20529 | 65814 |
In core/doctype/prepared_report/prepared_report.py in Frappe 11 and 1… |
|
HIGH | 7.5 |
| CVE-2017-1000120 | 66885 |
A SQL injection vulnerability exists in specified versions of Frappe,… |
|
HIGH | 8.8 |
| CVE-2024-24812 | 65296 |
Frappe is a full-stack web application framework that uses Python and… |
|
MEDIUM | 5.4 |
| CVE-2023-46127 | 61995 |
Frappe 14.49.0 includes a fix for CVE-2023-46127: A malicious Frappe … |
|
MEDIUM | 5.4 |
| CVE-2022-3988 | 62852 |
This is a placeholder package for the original Frappe Framework where… |
|
MEDIUM | 6.1 |
| CVE-2020-27508 | 70577 |
In two-factor authentication, the system also sending 2fa secret key … |
|
HIGH | 7.5 |
| CVE-2019-14965 | 70501 |
An issue was discovered in Frappe Framework 10 through 12 before 12.0… |
|
CRITICAL | 9.8 |
| CVE-2019-14966 | 70502 |
An issue was discovered in Frappe Framework 10 through 12 before 12.0… |
|
HIGH | 8.8 |
| CVE-2019-14967 | 70503 |
An issue was discovered in Frappe Framework 10, 11 before 11.1.46, an… |
|
MEDIUM | 6.1 |