Moderate severityNVD Advisory· Published Jul 23, 2020· Updated Aug 4, 2024
CVE-2020-15881
CVE-2020-15881
Description
A Cross-Site Scripting (XSS) vulnerability in the munki_facts (aka Munki Conditions) module before 1.5 for MunkiReport allows remote attackers to inject arbitrary web script or HTML via the key name.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
munkireport/munki_factsPackagist | < 1.5 | 1.5 |
Affected products
2- MunkiReport/munki_factsdescription
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/advisories/GHSA-x9q4-5f3c-cw62ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-15881ghsaADVISORY
- github.com/munkireport/munki_facts/releasesghsax_refsource_MISCWEB
- github.com/munkireport/munkireport-php/releases/tag/v5.6.3ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.