CVE-2025-52895 | Frappe up to 14.94.2/15.57.x sql injection (GHSA-mhj8-jfhf-mcw9)

A vulnerability was found in Frappe up to 14.94.2/15.57.x. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection.

This vulnerability is known as CVE-2025-52895. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More