Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-51461

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00415EPSS
Exploits0References1
NVD
NVDadded 2025/01/09 7:15 p.m.4 views

CVE-2024-13247

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Coffee allows Cross-Site Scripting XSS.This issue affects Coffee: from 0.0.0 before 1.4.0...

4.8CVSS0.00415EPSS
Exploits0References1
OSV
OSVadded 2025/01/09 7:15 p.m.0 views

CVE-2024-13247

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Coffee allows Cross-Site Scripting XSS.This issue affects Coffee: from 0.0.0 before 1.4.0...

4.8CVSS5.8AI score
Exploits0References1
Cvelist
Cvelistadded 2025/01/09 6:53 p.m.10 views

CVE-2024-13247 Coffee - Moderately critical - Cross Site Scripting - SA-CONTRIB-2024-011

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Coffee allows Cross-Site Scripting XSS.This issue affects Coffee: from 0.0.0 before 1.4.0...

0.00415EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/01/09 6:53 p.m.5 views

CVE-2024-13247 Coffee - Moderately critical - Cross Site Scripting - SA-CONTRIB-2024-011

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Coffee allows Cross-Site Scripting XSS.This issue affects Coffee: from 0.0.0 before 1.4.0...

6.6AI score0.00415EPSS
Exploits0References1
CVE
CVEadded 2025/01/09 6:53 p.m.45 views

CVE-2024-13247

CVE-2024-13247 concerns the Drupal Coffee module (versions 0.0.0 through 1.3.x; prior to 1.4.0). The root cause is improper neutralization/escaping of user input during web page generation, leading to Cross-Site Scripting (XSS) when Coffee renders certain content. The public documentation consist...

4.8CVSS6.2AI score0.00415EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2024/02/28 6:14 p.m.2 views

DRUPAL-CONTRIB-2024-011

The Coffee module helps you to navigate through the Drupal admin menus faster with a shortcut popup. The module doesn't sufficiently escape menu names when displaying them in the popup, thereby exposing a XSS vulnerability. This vulnerability is mitigated by the fact that an attacker must have a...

4.8CVSS6.2AI score0.00415EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/02/28 12:0 a.m.2 views

PT-2024-10128 · Drupal · Drupal Coffee

Name of the Vulnerable Software and Affected Versions: Drupal Coffee versions 0.0.0 through 1.4.0 Description: The issue is related to improper neutralization of input during web page generation, which allows Cross-Site Scripting XSS. This can be exploited by a remote attacker to conduct a...

5.5CVSS6.2AI score0.00415EPSS
Exploits0References5
Rows per page
Query Builder