CVE-2020-35175

Frappe Framework 12 and 13 does not properly validate the HTTP method for the frappe.client API.
References
Link Resource
https://github.com/frappe/frappe/pull/11228 Third Party Advisory
https://github.com/frappe/frappe/pull/11237 Patch Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:frappe:frappe:*:*:*:*:*:*:*:*
cpe:2.3:a:frappe:frappe:13.0.0:beta1:*:*:*:*:*:*
cpe:2.3:a:frappe:frappe:13.0.0:beta2:*:*:*:*:*:*
cpe:2.3:a:frappe:frappe:13.0.0:beta3:*:*:*:*:*:*
cpe:2.3:a:frappe:frappe:13.0.0:beta4:*:*:*:*:*:*
cpe:2.3:a:frappe:frappe:13.0.0:beta5:*:*:*:*:*:*
cpe:2.3:a:frappe:frappe:13.0.0:beta6:*:*:*:*:*:*
cpe:2.3:a:frappe:frappe:13.0.0:beta7:*:*:*:*:*:*
cpe:2.3:a:frappe:frappe:13.0.0:beta8:*:*:*:*:*:*

Information

Published : 2020-12-11 11:15

Updated : 2021-07-21 11:39


NVD link : CVE-2020-35175

Mitre link : CVE-2020-35175

Products Affected
No products.