Vulnerability CVE-2020-15881

Vulnerability CVE-2020-15881

Published: 2020-07-23

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Munkireport project -> Munki facts

https://github.com/munkireport/munki_facts/releases

https://github.com/munkireport/munkireport-php

https://github.com/munkireport/munkireport-php/releases/tag/v5.6.3

https://github.com/munkireport/munkireport-php/wiki/20200722-munki_facts-XSS