3 matches found
CVE-2023-30787
MonicaHQ version 4.0.0 allows an authenticated remote attacker to execute malicious code in the application via CSTI in the people:id/introductions endpoint and firstmetadditionalinfo parameter...
CVE-2023-30787
MonicaHQ version 4.0.0 allows an authenticated remote attacker to execute malicious code in the application via CSTI in the people:id/introductions endpoint and firstmetadditionalinfo parameter...
CVE-2023-30787
CVE-2023-30787 affects MonicaHQ version 4.0.0. The vulnerability allows an authenticated remote attacker to execute malicious code in the application via the CSTI in the people:id/introductions endpoint and the first_met_additional_info parameter. The advisory text in multiple sources confirms th...