Learning
CVE-2023-42807
CRITICAL
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionNVD
Frappe LMS is an open source learning management system. In versions 1.0.0 and prior, on the People Page of LMS, there was an SQL Injection vulnerability. The issue has been fixed in the main branch. Users won't face this issue if they are using the latest main branch of the app.
AnalysisAI
Frappe LMS is an open source learning management system. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified as SQL Injection (CWE-89), which allows attackers to execute arbitrary SQL commands against the database. Frappe LMS is an open source learning management system. In versions 1.0.0 and prior, on the People Page of LMS, there was an SQL Injection vulnerability. The issue has been fixed in the main branch. Users won't face this issue if they are using the latest main branch of the app. Affected products include: Frappe Learning.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Use parameterized queries/prepared statements. Never concatenate user input into SQL. Apply least-privilege database permissions.
Cross-site Scripting (XSS) - Generic in GitHub repository frappe/lms prior to 5614a6203fb7d438be8e2b1e3030e4528d170ec4.
Information disclosure vulnerability in Frappe LMS 2.35.0 allows remote unauthenticated attackers to access sensitive as
Frappe Learning Management System (LMS) is a learning system that helps users structure their content. Prior to 2.41.0,
Cross-site scripting (XSS) in Frappe LMS 2.35.0 Course Handler allows authenticated users with high privileges to inject
Frappe Learning Management System versions 2.44.0 and earlier contain a stored cross-site scripting (XSS) vulnerability
Frappe LMS 2.35.0 contains improper access controls in the Unpublished Course Handler component at the /courses/ endpoin
Frappe Learning Management System versions prior to 2.44.0 contain an information disclosure vulnerability that allows u
Frappe Learning Management System versions 2.44.0 and below allow unauthenticated attackers to retrieve sensitive detail
Frappe Learning is a learning system that helps users structure their content. Rated medium severity (CVSS 4.6), this vu
Frappe Learning is a learning system that helps users structure their content. Rated low severity (CVSS 1.2), this vulne
Frappe Learning is a learning system that helps users structure their content. Rated low severity (CVSS 1.3), this vulne
Frappe Learning is a learning system that helps users structure their content. Rated medium severity (CVSS 4.3), this vu
Same weakness CWE-89 – SQL Injection
View allShare
External POC / Exploit Code
Leaving vuln.today