H41Th

Name of the Vulnerable Software and Affected Versions: Frappe versions prior to 14.94.2 Frappe versions prior to 15.57.0 Description: The issue allows authenticated users to upload malicious files via Data Import, leading to cross-site scripting (XSS). Recommendations: For versions prior to 14.94.2, upgrade to version 14.94.2 to prevent cross-site scripting attacks. For versions prior to 15.57.0, upgrade to version 15.57.0 to prevent cross-site scripting attacks.