Stats Digest Feeds
โ† Back to all CVEs

CVE-2026-58503

UNKNOWN NVD
CVSS Score 0
Severity UNKNOWN
Published Jul 10, 2026
Vendor unknown

Description

Frappe is a full-stack web application framework. Prior to 16.16.0 and 15.106.0, user enumeration could be performed via the reset_password endpoint. This issue is fixed in versions 16.16.0 and 15.106.0.

References