CVE-2024-54951 Information

Description

Monica 4.1.2 is vulnerable to Cross Site Scripting (XSS). A malicious user can create a malformed contact and use that contact in the \HOW YOU MET\ customization options to trigger the XSS.

Reference

https://github.com/Allevon412/Monica-Stored-XSS-Vulnerability