Security Advisory

CVE-2025-30213

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-25 14:55:04

Last updated 2025-03-25 15:04:26

Assigner GitHub_M

State PUBLISHED

Description

Frappe is a full-stack web application framework. Prior to versions 14.91.0 and 15.52.0, a system user was able to create certain documents in a specific way that could lead to remote code execution. Versions 14.9.1 and 15.52.0 contain a patch for the vulnerability. Theres no workaround; an upgrade is required.

← Browse all CVEs View on cve.org ↗