Unrated severityNVD Advisory· Published Aug 27, 2019· Updated Aug 5, 2024
CVE-2019-15700
CVE-2019-15700
Description
public/js/frappe/form/footer/timeline.js in Frappe Framework 12 through 12.0.8 does not escape HTML in the timeline and thus is affected by crafted "changed value of" text.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Frappe/Frappe Frameworkdescription
- Range: >=12, <=12.0.8
Patches
Vulnerability mechanics
References
1- github.com/frappe/frappe/pull/8262mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.