Lucene search
K

6 matches found

NVD
NVD
added 2025/01/10 9:15 p.m.7 views

CVE-2024-54996

MonicaHQ v4.1.2 was discovered to contain multiple authenticated Client-Side Injection vulnerabilities via the title and description parameters at /people/ID/reminders/create...

8.8CVSS0.00767EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2025/01/10 12:0 a.m.7 views

CVE-2024-54994

MonicaHQ v4.1.2 was discovered to contain multiple Client-Side Injection vulnerabilities via the firstname and lastname parameters in the Add a new relationship feature...

7.7AI score0.00296EPSS
Exploits2References1
Cvelist
Cvelist
added 2025/01/10 12:0 a.m.13 views

CVE-2024-54996

MonicaHQ v4.1.2 was discovered to contain multiple authenticated Client-Side Injection vulnerabilities via the title and description parameters at /people/ID/reminders/create...

0.00767EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2025/01/10 12:0 a.m.8 views

CVE-2024-54996

MonicaHQ v4.1.2 was discovered to contain multiple authenticated Client-Side Injection vulnerabilities via the title and description parameters at /people/ID/reminders/create...

7.6AI score0.00767EPSS
Exploits2References2
OSV
OSV
added 2025/01/10 12:0 a.m.6 views

CVE-2024-54996

MonicaHQ v4.1.2 was discovered to contain multiple authenticated Client-Side Injection vulnerabilities via the title and description parameters at /people/ID/reminders/create...

8.8CVSS7.5AI score0.00767EPSS
Exploits2References3
CVE
CVE
added 2025/01/10 12:0 a.m.52 views

CVE-2024-54996

MonicaHQ v4.1.2 contains multiple authenticated Client-Side Injection vulnerabilities in the /people/ID/reminders/create endpoint, exploiting unsanitized title and description parameters. Root cause: input passed to these fields is not properly validated, enabling client-side code execution-like ...

8.8CVSS7.8AI score0.00767EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder