8 matches found
EUVD-2020-17783
Malware in sbrugna...
Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the associated CVE has been rescinded.
...
Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the associated CVE has been rescinded.
...
CVE-2020-13890
The Neon theme 2.0 before 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in a dashboard...
[SECURITY] [DLA 4125-1] twitter-bootstrap4 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4125-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès April 13, 2025 https://wiki.debian.org/LTS -...
CVE-2021-36374 affecting package javapackages-bootstrap for versions less than 1.5.0-6
CVE-2021-36374 affecting package javapackages-bootstrap for versions less than 1.5.0-6. A patched version of the package is available...
Bootstrap 4.x < 4.3.1 Cross-Site Scripting
According to its self-reported version number, Bootstrap is 3.x prior 3.4.1 or 4.x prior to 4.3.1. Therefore, it may be affected by a Cross-Site Scripting XSS vulnerability via data-template attribute for tooltip and popover plugins. Note that the scanner has not tested for these issues but has...
CVE-2018-14041
In Bootstrap before 4.1.2, XSS is possible in the data-target property of scrollspy...