A vulnerability, which was classified as problematic, was found in Frappe 16.10.0. This impacts an unknown function. Such manipulation leads to cross site scripting.
This vulnerability is referenced as CVE-2026-3837. It is possible to launch the attack remotely. No exploit is available.
