CVE-2020-15885

Published July 23rd, 2020

View on NVD ↗

CVSS v3

5.4

MEDIUM

CVSS v2

3.5

LOW

Affected

PROJECTS

Description

A Cross-Site Scripting (XSS) vulnerability in the comment module before 4.0 for MunkiReport allows remote attackers to inject arbitrary web script or HTML by posting a new comment.

munkireport/munkireport-php

A reporting tool for munki

GitHub

408

munkireport/comment

Comment module for MunkiReport

GitHub