Frappe: >> Frappe >> 14.96.15 Security Vulnerabilities
Frappe is a full-stack web application framework. Prior to 14.98.0 and 15.83.0, an open redirect was possible through the redirect argument on the login page, if a specific type of URL was passed in. This vulnerability is fixed in 14.98.0 and 15.83.0.
CVSS Score
6.1
EPSS Score
0.0
Published
2025-10-16