Vulnerabilities

CVE-2025-56380

by Fred · 02/10/2025

Frappe Framework v15.72.4 was discovered to contain a SQL injection vulnerability via the fieldname parameter in the frappe.client.get_value API endpoint and a crafted script to the fieldname parameter

More information : https://github.com/MoAlali

Similar

Tags: Cybersecurity Alert