A stored cross-site scripting (XSS) vulnerability exists in Monica (aka MonicaHQ) 4.0.0 via an SVG document uploaded by an authenticated user.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-12-11
Cross Site Scripting (XSS) in Monica before 2.19.1 via the journal page.
CVSS Score
5.4
EPSS Score
0.003
Published
2021-04-14