CVE-2020-15885

A Cross-Site Scripting (XSS) vulnerability in the comment module before 4.0 for MunkiReport allows remote attackers to inject arbitrary web script or HTML by posting a new comment. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt