CVE-2025-67289 | Frappe Framework 15.89.0 Attachments unrestricted upload

Inserito da Angelo Barbosa | Dic 22, 2025 | CVE

A vulnerability, which was classified as critical, was found in Frappe Framework 15.89.0. Affected by this vulnerability is an unknown functionality of the component Attachments Module. Such manipulation leads to unrestricted upload.

This vulnerability is documented as CVE-2025-67289. The attack can be executed remotely. There is not any exploit available.

CVE-2025-67289 | Frappe Framework 15.89.0 Attachments unrestricted upload

Post correlati

CVE-2025-2093 | PHPGurukul Online Library Management System 3.0 /change-password.php email/phone number password recovery

CVE-2024-30059 | Microsoft Intune for Android Mobile Application Management on Android access control

CVE-2024-6055 | Devolutions Remote Desktop Manager up to 2024.1.32.0 on Windows Setting information disclosure (DEVO-2024-0008)

CVE-2024-38435 | Unitronics Vision PLC up to v9.9.0 unknown vulnerability