CVE-2021-27370

CVE-2021-27370

The Contact page in Monica 2.19.1 allows stored XSS via the Last Name field.

Source: CVE-2021-27370