A vulnerability has been found in Frappe up to 15.105.x/16.15.x and classified as problematic . Affected is an unknown function. Performing a manipulation results in cross site scripting. This vulnerability is identified as CVE-2026-47739 . The attack can be initiated remotely. There is not any exploit available. The affected component should be upgraded.