VYPR
Medium severity5.4NVD Advisory· Published Feb 13, 2025· Updated Jun 17, 2026

CVE-2024-54951

CVE-2024-54951

Description

Monica 4.1.2 is vulnerable to Cross Site Scripting (XSS). A malicious user can create a malformed contact and use that contact in the "HOW YOU MET" customization options to trigger the XSS.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Monica/Monicacpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: =4.1.2

Patches

Vulnerability mechanics

News mentions

0

No linked articles in our index yet.