Vulnerabilities > Frappe > Frappe LMS

DATE CVE VULNERABILITY TITLE RISK
2023-10-12 CVE-2023-5555 Cross-site Scripting vulnerability in Frappe LMS 1.0.0
Cross-site Scripting (XSS) - Generic in GitHub repository frappe/lms prior to 5614a6203fb7d438be8e2b1e3030e4528d170ec4.
network
low complexity
frappe CWE-79
6.1
6.1
2023-09-21 CVE-2023-42807 SQL Injection vulnerability in Frappe LMS
Frappe LMS is an open source learning management system.
network
low complexity
frappe CWE-89
critical
 9.8
9.8