Medium severity5.4NVD Advisory· Published Feb 22, 2021· Updated Jun 17, 2026
CVE-2021-27368
CVE-2021-27368
Description
The Contact page in Monica 2.19.1 allows stored XSS via the First Name field.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Monica/Monicadescription
Patches
Vulnerability mechanics
References
2- github.com/monicahq/monica/issues/4888nvdExploitIssue TrackingThird Party Advisory
- github.com/monicahq/monica/pull/4543nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.