Security Advisory

CVE-2023-30790

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-08 00:00:00

Last updated 2025-02-03 19:59:00

Assigner Fluid Attacks

State PUBLISHED

Description

MonicaHQ version 4.0.0 allows an authenticated remote attacker to execute malicious code in the application via CSTI in the `people:id/relationships` endpoint and first_name and last_name parameter.

← Browse all CVEs View on cve.org ↗