Loading market data...
← Back to CVE feed

CVE-2026-41581

UNKNOWN View on NVD ↗

Description

Frappe is a full-stack web application framework. Prior to versions 15.106.0 and 16.16.0, there is a possible SQL Injection via get_blog_list. This issue has been patched in versions 15.106.0 and 16.16.0.

Published: Jun 12, 2026 15:16 UTC Modified: Jun 12, 2026 15:56 UTC