A SQL injection vulnerability in reportdata_controller.php in the reportdata module before 3.5 for MunkiReport allows attackers to execute arbitrary SQL commands via the req parameter of the /module/reportdata/ip endpoint.
CPE | Name | Operator | Version |
---|---|---|---|
reportdata | lt | 3.5 |