Mohammed Aloli
3 exploits
Active since Oct 2025
ERPNEXT v15.67.0 - Stored Cross-Site Scripting in Blog Post Content Field
CVSS 5.4
Frappe Framework 15.72.4 - SQL Injection via get_value API fieldname Parameter
CVSS 6.5
ERPNEXT 15.67.0 - SQL Injection via order_by and group_by Parameters
CVSS 6.5