Medium severity5.4NVD Advisory· Published Feb 13, 2025· Updated Jun 17, 2026
CVE-2024-54951
CVE-2024-54951
Description
Monica 4.1.2 is vulnerable to Cross Site Scripting (XSS). A malicious user can create a malformed contact and use that contact in the "HOW YOU MET" customization options to trigger the XSS.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.