mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 01:02:25 +00:00
24 lines
738 B
JSON
24 lines
738 B
JSON
{
|
|
"id": "CVE-2023-30788",
|
|
"sourceIdentifier": "help@fluidattacks.com",
|
|
"published": "2023-05-08T20:15:20.087",
|
|
"lastModified": "2023-05-09T12:47:05.663",
|
|
"vulnStatus": "Awaiting Analysis",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "MonicaHQ version 4.0.0 allows an authenticated remote attacker to execute malicious code in the application via CSTI in the `people/add` endpoint and nickName, description, lastName, middleName and firstName parameter."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"references": [
|
|
{
|
|
"url": "https://fluidattacks.com/advisories/napoli",
|
|
"source": "help@fluidattacks.com"
|
|
},
|
|
{
|
|
"url": "https://www.monicahq.com/",
|
|
"source": "help@fluidattacks.com"
|
|
}
|
|
]
|
|
} |