Known Vulnerabilities for Frappe Hr by Frappe
Listed below are 3 of the newest known vulnerabilities associated with "Frappe Hr" by "Frappe".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-58503 json | Frappe is a full-stack web application framework. Prior to 16.16.0 and 15.106.0, user enumeration could be performed via the ... | Not Provided | 2026-07-10 | 2026-07-13 |
| CVE-2026-55852 json | Frappe is a full-stack web application framework. Prior to 16.23.0 and 15.112.0, TarSlip RCE was possible in Package Import b... | Not Provided | 2026-07-10 | 2026-07-13 |
| CVE-2026-53568 json | Frappe is a full-stack web application framework. Prior to versions 15.107.2 and 16.17.4, there is a stored XSS vulnerablity ... | Not Provided | 2026-06-12 | 2026-06-12 |
| CVE-2026-50712 json | A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralizatio... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-50711 json | A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralizatio... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-50710 json | A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to unsafe evaluation of u... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-50709 json | A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralizatio... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-50708 json | A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralizatio... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-50705 json | A Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of un... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-50704 json | A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralizatio... | Not Provided | 2026-06-24 | 2026-06-24 |