← back
CVE-2019-14965

CVE-2019-14965

EPSS 2.6%
An issue was discovered in Frappe Framework 10 through 12 before 12.0.4. A server side template injection (SSTI) issue exists.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/frappe/frappe/compare/v12.0.3...v12.0.4https://github.com/frappe/frappe/pull/8044https://github.com/frappe/frappe/pull/8045https://github.com/frappe/frappe/pull/8046https://github.com/frappe/frappe/pull/8047https://github.com/frappe/frappe/releases/tag/v12.0.4