A vulnerability was found in Frappe up to 6.18.1/15.107.4. It has been rated as problematic. Impacted is an unknown function of the component Reportview. The manipulation leads to permission issues.

This vulnerability is uniquely identified as CVE-2026-47422. The attack is possible to be carried out remotely. No exploit exists.