CVE-2023-30788 | MonicaHQ 4.0.0 CSTI people/add cross site scripting (EUVD-2023-35150)
A vulnerability was found in MonicaHQ 4.0.0. It has been declared as critical. Affected by this issue is some unknown functionality of the file people/add of the component CSTI. Executing manipulation of the argument nickName/description/lastName/middleName/firstName can lead to cross site scripting.
This vulnerability is tracked as CVE-2023-30788. The attack can be launched remotely. No exploit exists.