CVE-2024-13247
CVE-2024-13247 concerns the Drupal Coffee module (versions 0.0.0 through 1.3.x; prior to 1.4.0). The root cause is improper neutralization/escaping of user input during web page generation, leading to Cross-Site Scripting (XSS) when Coffee renders certain content. The public documentation consist...