2 matches found
CVE-2023-1094
MonicaHQ version 4.0.0 allows an authenticated remote attacker to execute malicious code in the application via CSTI in the people:id/food endpoint and food parameter...
CVE-2023-1094
CVE-2023-1094 affects MonicaHQ version 4.0.0. Multiple connected sources describe an authenticated remote attacker who can execute malicious code in the application via CSTI in the people:id/food endpoint using the food parameter. The issue is confirmed across CVE aggregations and vendor/third-pa...