Frappe Learning Management System, Stored Cross-Site Scripting, CVE-2025-67734 (Medium)

Listen to this Post

The vulnerability is a stored Cross-Site Scripting (XSS) flaw within the Frappe LMS Job Form. In versions prior to 2.42.0, the application does not properly sanitize or validate user input in the “Company Website” field. An attacker with authenticated access to the system can submit a job posting containing malicious JavaScript code within this website field. This injected payload is then stored persistently in the application’s database. When a victim, such as another user or administrator, later views the malicious job posting listing, the stored script is served as part of the webpage and executes automatically in the victim’s browser. This execution occurs within the security context of the Frappe LMS site, allowing the attacker’s code to perform actions on behalf of the victim. Successful exploitation can lead to session hijacking, theft of authentication credentials, or unauthorized actions being performed within the victim’s account without their consent.
Platform: Frappe LMS
Version: Prior to 2.42.0
Vulnerability: Stored XSS
Severity: Medium
Date: 2025-12-12

Prediction: 2025-12-12

What Undercode Say:

Analytics

No exploit analytics available.

Bash Commands and Codes

Curl command to test for basic XSS in a form field (Conceptual)
curl -X POST 'https://<target>/api/method/submit_job' \
-H 'Authorization: Token <your_token>' \
-d 'company_website="><script>alert(document.domain)</script>'
<!-- Example XSS payload for the Company Website field -->
"><img src=x onerror=alert('XSS')>

How Exploit:

An authenticated attacker injects a malicious script into the “Company Website” field of the Job Form. This script is saved to the database. The script executes in the browser of any user who opens the infected job posting.

Protection from this CVE:

Upgrade to version 2.42.0 immediately. Implement strict input validation for all user-submitted fields. Apply context-aware output encoding. Enforce a Content Security Policy (CSP).

Impact:

Session hijacking possible. Credential theft risk. Unauthorized user actions.

🎯Let’s Practice Exploiting & Learn Patching For Free:

Sources:

Reported By: nvd.nist.gov
Extra Source Hub:
Undercode

🔐JOIN OUR CYBER WORLD [ CVE News • HackMonitor • UndercodeNews ]

💬 Whatsapp | 💬 Telegram

📢 Follow DailyCVE & Stay Tuned:

𝕏 formerly Twitter 🐦 | @ Threads | 🔗 Linkedin Featured Image

Scroll to Top