CVE-2021-27371

CVE-2021-27371

The Contact page in Monica 2.19.1 allows stored XSS via the Description field.

Source: CVE-2021-27371