Описание
An issue was discovered in Frappe Framework 10 through 12 before 12.0.4. There exists an authenticated SQL injection.
An issue was discovered in Frappe Framework 10 through 12 before 12.0.4. There exists an authenticated SQL injection.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2019-14966
- https://github.com/frappe/frappe/pull/8044
- https://github.com/frappe/frappe/pull/8045
- https://github.com/frappe/frappe/pull/8046
- https://github.com/frappe/frappe/pull/8047
- https://github.com/frappe/frappe/compare/v12.0.3...v12.0.4
- https://github.com/frappe/frappe/releases/tag/v12.0.4
Связанные уязвимости
CVSS3: 8.8
nvd
больше 6 лет назад
An issue was discovered in Frappe Framework 10 through 12 before 12.0.4. There exists an authenticated SQL injection.