CVE-2026-28436 Blast Radius

HIGH • CVSS 7.2Frappe is a full-stack web application framework. Prior to versions 16.11.0 and 15.102.0, an attacker can set a crafted image URL that results in XSS …

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-28436.

Start Free Scan →← Back to CVE-2026-28436