Количество 2
Количество 2
CVE-2025-30217
Frappe is a full-stack web application framework. Prior to versions 14.93.2 and 15.55.0, a SQL Injection vulnerability has been identified in Frappe Framework which could allow a malicious actor to access sensitive information. Versions 14.93.2 and 15.55.0 contain a patch for the issue. No known workarounds are available.
GHSA-6phg-4wmq-h5h3
Frappe has possibility of SQL injection due to improper validations
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-30217 Frappe is a full-stack web application framework. Prior to versions 14.93.2 and 15.55.0, a SQL Injection vulnerability has been identified in Frappe Framework which could allow a malicious actor to access sensitive information. Versions 14.93.2 and 15.55.0 contain a patch for the issue. No known workarounds are available. | CVSS3: 7.5 | 0% Низкий | 11 месяцев назад |
| GHSA-6phg-4wmq-h5h3 Frappe has possibility of SQL injection due to improper validations | 0% Низкий | 11 месяцев назад |
Уязвимостей на страницу