Muztahidul Islam Tanim

**Name of the Vulnerable Software and Affected Versions** Frappe LMS versions 1.0.0 and prior **Description** Frappe LMS is an open source learning management system. The issue is related to an SQL Injection vulnerability on the People Page of LMS. The vulnerability has been fixed in the `main` branch. **Recommendations** For versions 1.0.0 and prior, update to the latest `main` branch to resolve the issue. As a temporary workaround, consider restricting access to the People Page of LMS until the update is applied.