Vulnerabilities

CVE-2025-59421

by Fred · 18/09/2025

Press, a Frappe custom app that runs Frappe Cloud, manages infrastructure, subscription, marketplace, and software-as-a-service (SaaS). A bad actor can flood the inbox of a user by repeatedly sending invites (duplicate). The issue is fixed in commit 83c3fc7676c5dbbe1fd5092d21d95a10c7b48615.

More information : https://github.com/frappe/press/commit/83c3fc7676c5dbbe1fd5092d21d95a10c7b48615

Similar

Tags: Cybersecurity Alert