Security Advisory

CVE-2025-30212

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-25 14:21:32

Last updated 2025-03-25 14:41:42

Assigner GitHub_M

State PUBLISHED

Description

Frappe is a full-stack web application framework. An SQL Injection vulnerability has been identified in Frappe Framework prior to versions 14.89.0 and 15.51.0 which could allow a malicious actor to access sensitive information. Versions 14.89.0 and 15.51.0 fix the issue. Upgrading is required; no other workaround is present.

← Browse all CVEs View on cve.org ↗