Ghostwire

CVE-2026-41482: Frappe is a full-stack web application framework. Prior to 16.18.3, possible path traversal and local file inclusion...

HIGH CVSS 0.0

Published: July 10, 2026 | Last Modified: July 10, 2026

Description

Frappe is a full-stack web application framework. Prior to 16.18.3, possible path traversal and local file inclusion were possible through secure local resource access in the Chrome PDF Generator. This issue is fixed in version 16.18.3.

Ghostwire Analysis — What This Means Practically

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Security Coverage (1 articles)

References