CVE-2026-23497
Low
Low
Medium
High
Critical
CVSS Score
Published: Jan 14, 2026
Last Modified: Jan 14, 2026
Vulnerability Description
Frappe Learning Management System (LMS) is a learning system that helps users structure their content. In 2.44.0 and earlier, there is a stored XSS vulnerability where a specially crafted image filename could execute malicious JavaScript when rendered on course or jobs pages.
Severity Details
out of 10.0
Low
Key Information
- Published Date
- January 14, 2026
