munkireport/softwareupdate

Releases22

Frequency4 months 23 hours

Last Release 6 months ago

Stars3

Softwareupdate module for MunkiReport

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-15887 ↗	Jul 23, 2020Thursday, 23 July 2020, 14:15	8.8 HIGH	6.5 MEDIUM
A SQL injection vulnerability in softwareupdate_controller.php in the Software Update module before 1.6 for MunkiReport allows attackers to execute arbitrary SQL commands via the last URL parameter of the /module/softwareupdate/get_tab_data/ endpoint.