Security Intel Hub 5+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

High

Frappe Press API Key Generation Logic Flaw Fix

github.com · 2026-04-24

frappe/press

Low

Frappe LMS CVE-2025-66581: Server-Side Authorization Bypass in Business Logic

CVE-2025-66581 · github.com · 2025-12-06

frappe/lms 2.0.0

Frappe Rate Limit Fix for Invite Feature

github.com · 2025-09-20

### Critical Vulnerability Information - **Issue Description**: - Fixed rate limiting for inviting members and prevented duplicate invitations within a 24-hour period. - **Code Changes**: - Introduced…

Frappe SQL Injection Fix: Blacklisted Function Check Logic Flaw

github.com · 2025-07-06

From this webpage screenshot, the following key vulnerability information can be obtained: - **Submission ID**: c795e35 - **Submitter**: akhilnarang - **Submission Date**: Mar 6 - **Submission Descrip…

Frappe XSS Fix: Data Import and Attach Control Sanitization

github.com · 2025-07-06

### Key Information #### Vulnerability Type - XSS (Cross-Site Scripting) #### Remediation Measures 1. **import_preview.js** - XSS check and sanitization applied to string-type `cell`: ```javascript if…

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!