Unrated severityNVD Advisory· Published Sep 21, 2023· Updated Sep 24, 2024
Frappe LMS SQL Injection Issue on People Page
CVE-2023-42807
Description
Frappe LMS is an open source learning management system. In versions 1.0.0 and prior, on the People Page of LMS, there was an SQL Injection vulnerability. The issue has been fixed in the main branch. Users won't face this issue if they are using the latest main branch of the app.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- github.com/frappe/lms/security/advisories/GHSA-wvq3-3wvp-6x63mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.