Vulnerabilities > Munki Facts Project

DATE CVE VULNERABILITY TITLE RISK
2020-07-23 CVE-2020-15881 Cross-site Scripting vulnerability in Munki Facts Project Munki Facts
A Cross-Site Scripting (XSS) vulnerability in the munki_facts (aka Munki Conditions) module before 1.5 for MunkiReport allows remote attackers to inject arbitrary web script or HTML via the key name.
network
low complexity
munki-facts-project CWE-79
6.1