CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-13238

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Typogrify allows Cross-Site Scripting (XSS).This issue affects Typogrify: from 0.0.0 before 1.3.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.3%

CVSS Severity

CVSS v3 Score 5.4

References

https://www.drupal.org/sa-contrib-2024-002

Products affected by CVE-2024-13238

Typogrify Project » Typogrify » Version: 5.x-1.0

cpe:2.3:a:typogrify_project:typogrify:5.x-1.0
Typogrify Project » Typogrify » Version: 6.x-1.0

cpe:2.3:a:typogrify_project:typogrify:6.x-1.0
Typogrify Project » Typogrify » Version: 8.x-1.0

cpe:2.3:a:typogrify_project:typogrify:8.x-1.0
Typogrify Project » Typogrify » Version: 8.x-1.1

cpe:2.3:a:typogrify_project:typogrify:8.x-1.1
Typogrify Project » Typogrify » Version: 8.x-1.2

cpe:2.3:a:typogrify_project:typogrify:8.x-1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-13238

Products

Pricing

Contact Us