CVE-2021-27368

CVE-2021-27368

The Contact page in Monica 2.19.1 allows stored XSS via the First Name field.

Source: CVE-2021-27368