Identifier

CVE-2020-15885

Package Slug

packagist/munkireport/comment

Vulnerability

Cross-site Scripting

Description

A Cross-Site Scripting (XSS) vulnerability in the comment module for MunkiReport allows remote attackers to inject arbitrary web script or HTML by posting a new comment.

Affected Versions

All versions before 4.0

Solution

Upgrade to version 4.0 or above.

Last Modified

2020-07-29

source