Security Advisory

CVE-2023-30788

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-08 00:00:00

Last updated 2025-02-04 19:11:04

Assigner Fluid Attacks

State PUBLISHED

Description

MonicaHQ version 4.0.0 allows an authenticated remote attacker to execute malicious code in the application via CSTI in the `people/add` endpoint and nickName, description, lastName, middleName and firstName parameter.

← Browse all CVEs View on cve.org ↗