CVE-2023-42807 - SQL Injection Vulnerability in Frappe LMS Versions 1.. and Prior, Patched in Main Branch
In this post, we're taking a close look at an SQL injection vulnerability (CVE-2023-42807) found in Frappe LMS, an open-source learning management system.
CVE-2022-41712: Frappe v14.10. Remote Arbitrary File Disclosure Exploit
In this post, we will be discussing a critical vulnerability, CVE-2022-41712, affecting Frappe v14.10.. This vulnerability allows an external attacker to remotely obtain arbitrary