12.8.0

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-22	CVE-2022-23057	Unspecified vulnerability in Frappe Erpnext In ERPNext, versions v12.0.9--v13.0.3 are vulnerable to Stored Cross-Site-Scripting (XSS), due to user input not being validated properly. network low complexity frappe	5.4

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.