Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
monica vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-30789
MonicaHQ version 4.0.0 allows an authenticated remote malicious user to execute malicious code in the application via CSTI in the `people:id/work` endpoint and job and company parameter.
Monicahq Monica 4.0.0
5.4
CVSSv3
CVE-2023-30790
MonicaHQ version 4.0.0 allows an authenticated remote malicious user to execute malicious code in the application via CSTI in the `people:id/relationships` endpoint and first_name and last_name parameter.
Monicahq Monica 4.0.0
5.4
CVSSv3
CVE-2021-27370
The Contact page in Monica 2.19.1 allows stored XSS via the Last Name field.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2