CVE-2025-64705 | Frappe LMS up to 2.40.x information disclosure (GHSA-qrvv-6g7r-g3v8)

November 13, 2025 Yanac

A vulnerability was found in Frappe LMS up to 2.40.x. It has been rated as problematic. This impacts an unknown function. The manipulation leads to information disclosure.

This vulnerability is uniquely identified as CVE-2025-64705. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More

CVE-2025-64707 | Frappe LMS up to 2.40.x authorization (GHSA-w2gf-rchw-x6vm)
CVE-2025-64345 | bytecodealliance wasmtime up to 24.0.4/36.0.2/37.0.2/38.0.3 Shared Memory Page Memory::new race condition (GHSA-hc7m-r6v8-hg9q)