Vulnerabilities

CVE-2025-11461

by Fred · 26/11/2025

Multiple SQL Injections in Frappe CRM Dashboard Controller due to unsafe concatenation of user-controlled parameters into dynamic SQL statements.
This issue affects Frappe CRM: 1.53.1.

More information : https://fluidattacks.com/advisories/oz

Similar

Tags: Cybersecurity Alert