Vulnerabilities > Frappe > Erpnext > 10.1.55

DATE CVE VULNERABILITY TITLE RISK
2018-12-11 CVE-2018-20061 SQL Injection vulnerability in Frappe Erpnext
A SQL injection issue was discovered in ERPNext 10.x and 11.x through 11.0.3-beta.29.
network
low complexity
frappe CWE-89
5.0