What is the CVSS score of CVE-2025-66206?

CVE-2025-66206 has a CVSS 3.1 base score of 6.8 (Medium). CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N. EPSS exploitation probability: 0.1%.

Which versions of Frappe are affected by CVE-2025-66206?

Organizations using Frappe should be aware of notable risk from CVE-2025-66206, a path traversal vulnerability rated CVSS 6.8. This could allow unauthorized file access.. A patch is available.

How to fix or mitigate CVE-2025-66206?

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Review file handling controls.

Frappe CVE-2025-66206

EUVD-2025-200085 MEDIUM

Path Traversal (CWE-22)

2025-12-01 security-advisories@github.com

Nginx Path Traversal Frappe

6.8

CVSS 3.1 · GitHub Advisory

Severity by source

GitHub Advisory PRIMARY

6.8 MEDIUM

AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

None

Availability

None

Lifecycle Timeline

Patch available

Apr 16, 2026 - 05:29 EUVD

15.86.0,14.99.2

EUVD ID Assigned

Mar 15, 2026 - 13:34 euvd

EUVD-2025-200085

Analysis Generated

Mar 15, 2026 - 13:34 vuln.today

CVE Published

Dec 01, 2025 - 21:15 nvd

MEDIUM 6.8

DescriptionGitHub Advisory

Frappe is a full-stack web application framework. Prior to 15.86.0 and 14.99.2, certain requests were vulnerable to path traversal attacks, wherein some files from the server could be retrieved if the full path was known. Sites hosted on Frappe Cloud, and even other setups that are behind a reverse proxy like NGINX are unaffected. This would mainly affect someone directly using werkzeug/gunicorn. In those cases, either an upgrade or changing the setup to use a reverse proxy is recommended. This vulnerability is fixed in 15.86.0 and 14.99.2.

Analysis

Technical ContextAI

Path traversal allows an attacker to access files outside the intended directory by manipulating file paths with sequences like '../'.

RemediationAI

Validate and sanitize file path inputs. Use a whitelist of allowed files or directories. Implement chroot jails or containerization.

More from same product – last 7 days

CVE-2026-44208 MEDIUM This Month

6.9 Jun 12

Unauthorized resource access in the Frappe web application framework exposes the submit_discussion() endpoint to unauthe

CVE-2026-50026 MEDIUM This Month

6.9 Jun 12

Missing authorization checks on multiple Frappe framework endpoints allow remote unauthenticated attackers to access and

CVE-2026-44205 MEDIUM This Month

6.9 Jun 12

Stored cross-site scripting in Frappe's user profile image section enables script injection that executes in the browser

CVE-2026-47739 MEDIUM This Month

6.9 Jun 12

Stored cross-site scripting in the Frappe framework's Note feature allows a low-privileged attacker to persist malicious

CVE-2026-44206 MEDIUM This Month

6.9 Jun 12

DB schema enumeration in Frappe (versions prior to 15.107.2 and 16.17.4) exposes internal database structure to unauthen

CVE-2025-66206 vulnerability details – vuln.today

Back

Frappe CVE-2025-66206

Severity by source

CVSS VectorGitHub Advisory

Lifecycle Timeline

DescriptionGitHub Advisory

Analysis

Technical ContextAI

RemediationAI

More from same product – last 7 days

Share

External POC / Exploit Code