Unrated severityNVD Advisory· Published Jan 9, 2025· Updated Jan 9, 2025

Coffee - Moderately critical - Cross Site Scripting - SA-CONTRIB-2024-011

CVE-2024-13247

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Coffee allows Cross-Site Scripting (XSS).This issue affects Coffee: from 0.0.0 before 1.4.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Drupal/Coffeellm-create2 versions
<1.4.0+ 1 more
- (no CPE)range: <1.4.0
- (no CPE)range: 0.0.0

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.drupal.org/sa-contrib-2024-011mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000