Unrated severityNVD Advisory· Published Feb 11, 2026· Updated Feb 12, 2026
Frappe LMS affected by unauthorised user was able to access the full list of batch enrolled students
CVE-2026-26031
Description
Frappe Learning Management System (LMS) is a learning system that helps users structure their content. Prior to 2.44.0, security issue was identified in Frappe Learning, where unauthorised users were able to access the full list of enrolled students (by email) in batches. This vulnerability is fixed in 2.44.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- github.com/frappe/lms/releases/tag/v2.44.0mitrex_refsource_MISC
- github.com/frappe/lms/security/advisories/GHSA-3gw9-gwjm-vcq5mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.