CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-13247

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Coffee allows Cross-Site Scripting (XSS).This issue affects Coffee: from 0.0.0 before 1.4.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.0%

CVSS Severity

CVSS v3 Score 4.8

References

https://www.drupal.org/sa-contrib-2024-011

Products affected by CVE-2024-13247

Coffee Project » Coffee » Version: 7.x-1.0

cpe:2.3:a:coffee_project:coffee:7.x-1.0
Coffee Project » Coffee » Version: 7.x-2.0

cpe:2.3:a:coffee_project:coffee:7.x-2.0
Coffee Project » Coffee » Version: 7.x-2.1

cpe:2.3:a:coffee_project:coffee:7.x-2.1
Coffee Project » Coffee » Version: 7.x-2.2

cpe:2.3:a:coffee_project:coffee:7.x-2.2
Coffee Project » Coffee » Version: 7.x-2.3

cpe:2.3:a:coffee_project:coffee:7.x-2.3
Coffee Project » Coffee » Version: 8.x-1.0

cpe:2.3:a:coffee_project:coffee:8.x-1.0
Coffee Project » Coffee » Version: 8.x-1.1

cpe:2.3:a:coffee_project:coffee:8.x-1.1
Coffee Project » Coffee » Version: 8.x-1.2

cpe:2.3:a:coffee_project:coffee:8.x-1.2
Coffee Project » Coffee » Version: 8.x-1.3

cpe:2.3:a:coffee_project:coffee:8.x-1.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-13247

Products

Pricing

Contact Us