Critical Alert 1 Active Exploit Detected Today

CVE-2026-28318 — SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability →

Powered by CVE Watchtower

×

CVE-2025-52895

Security Flaws in Frappe Framework Expose Self-Hosted ERPNext Users to Takeovers, XSS, and SQL Injection Frappe Framework, Critical Vulnerabilities

Frappe Framework, Critical Vulnerabilities

Security Flaws in Frappe Framework Expose Self-Hosted ERPNext Users to Takeovers, XSS, and SQL Injection

Do Son July 2, 2025

The Frappe Framework, a widely used full-stack application platform that powers ERPNext, has been found vulnerable to...