Security: frappe/frappe
Security Advisories
View known security vulnerabilities and report new vulnerabilities privately to maintainers.
-
Error logs could potentially leak secretsGHSA-38fg-mjcm-3hc6 published
Aug 17, 2023 by ankushModerate severity -
Possible HTML Injection attackGHSA-4jj9-5vgc-gc4j published
Aug 28, 2023 by ankushLow severity -
Possibility of limited SQL injection due to insufficient validationGHSA-53wh-f67g-9679 published
Sep 6, 2023 by ankushModerate severity -
html2text is not safe on user inputGHSA-wp7j-3w22-93j6 published
Jul 12, 2023 by ankushModerate severity -
Improper Authorization while renaming docsGHSA-whww-ggp5-r2xq published
Aug 28, 2023 by ankushModerate severity -
Weak authentication when accessing print view using keyGHSA-7xv4-ggpj-g48q published
Feb 22, 2023 by surajshetty3416Moderate severity -
Improper Access Control for Email TemplatesGHSA-f939-v9q6-j3wg published
Feb 22, 2023 by surajshetty3416High severity