Vulnerabilities

CVE-2025-10655

by Fred · 09/12/2025

SQL Injection in Frappe HelpDesk in the dashboard get_dashboard_data due to unsafe concatenation of user-controlled parameters into dynamic SQL statements.This issue affects Frappe HelpDesk: 1.14.0.

More information : https://fluidattacks.com/advisories/dyango

Similar

Tags: Cybersecurity Alert