logo
DATABASE RESOURCES PRICING ABOUT US

Moderate severity vulnerability that affects Bootstrap.Less, bootstrap, and bootstrap.sass

Description

In Bootstrap 4 before 4.3.1 and Bootstrap 3 before 3.4.1, XSS is possible in the tooltip or popover data-template attribute. For more information, see: https://blog.getbootstrap.com/2019/02/13/bootstrap-4-3-1-and-3-4-1/


Affected Software


CPE Name Name Version
bootstrap.less 3.0.0
bootstrap.less 3.4.1
bootstrap 3.0.0
bootstrap 3.4.1
bootstrap.sass 4.3.1
bootstrap 4.0.0
bootstrap 4.3.1

Related