Security Advisory

CVE-2026-35614

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-07 16:42:12

Last updated 2026-04-09 14:41:12

Assigner GitHub_M

State PUBLISHED

Description

Frappe is a full-stack web application framework. Prior to 16.14.0 and 15.104.0, Frappe has a SQL injection in bulk_update. This vulnerability is fixed in 16.14.0 and 15.104.0.

← Browse all CVEs View on cve.org ↗