NVD Vulnerability Detail
Search Exploit, PoC
CVE-2026-44207
Summary

Frappe is a full-stack web application framework. Prior to versions 15.107.0 and 16.17.0, an IDOR vulnerability allows authenticated users to access other users' email configuration details. This issue has been patched in versions 15.107.0 and 16.17.0.

Publication Date June 13, 2026, 1:16 a.m.
Registration Date June 13, 2026, 4:17 a.m.
Last Update June 13, 2026, 1:17 a.m.
Related information, measures and tools
Common Vulnerabilities List