An issue exists in Frappe Framework 10, 11 prior to 11.1.46, and 12. There exists an XSS vulnerability.
frappe frappe 10.0.0
frappe frappe 12.0.0
frappe frappe