CVE-2026-41430 | frappe press Subscription cross site scripting (GHSA-mpww-rq79-8r2c)

Inserito da Angelo Barbosa | Apr 24, 2026 | CVE

A vulnerability marked as problematic has been reported in frappe press. Impacted is an unknown function of the component Subscription Handler. Performing a manipulation results in cross site scripting.

This vulnerability is known as CVE-2026-41430. Remote exploitation of the attack is possible. No exploit is available.

It is suggested to install a patch to address this issue.

CVE-2026-41430 | frappe press Subscription cross site scripting (GHSA-mpww-rq79-8r2c)

Post correlati

CVE-2024-13168 | Ivanti Endpoint Manager out-of-bounds write

CVE-2024-37560 | IqbalRony WP User Switch Plugin up to 1.1.0 on WordPress privileges management

CVE-2024-53966 | Adobe Experience Manager up to 6.5.21 Form Field cross site scripting (apsb24-69)

CVE-2025-41045 | appRain CMF 4.0.5 ethical data[sconfig][ethical_licensekey] cross site scripting