A vulnerability identified as critical has been detected in Frappe ERPNext up to 15.105.x/16.15.x . This issue affects some unknown processing. The manipulation leads to server-side request forgery. This vulnerability is referenced as CVE-2026-44441 . Remote exploitation of the attack is possible. No exploit is available. You should upgrade the affected component.