Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2341 matches found

OSV
OSVadded 2024/07/11 5:15 p.m.1 views

DEBIAN-CVE-2024-6485

A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting XSS attacks. The vulnerability is associated with the data-loading-text attribute within the button plugin. This vulnerability can be exploited by injecting malicious JavaScript code into the attribut...

6.4CVSS6.6AI score0.00466EPSS
Exploits0References1
OSV
OSVadded 2024/07/11 5:15 p.m.19 views

CVE-2024-6484

Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the associated CVE has been rescinded...

6.2AI score
Exploits0References1
NVD
NVDadded 2024/07/11 5:15 p.m.13 views

CVE-2024-6484

Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the associated CVE has been rescinded...

Exploits0
NVD
NVDadded 2024/07/11 5:15 p.m.18 views

CVE-2024-6485

A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting XSS attacks. The vulnerability is associated with the data-loading-text attribute within the button plugin. This vulnerability can be exploited by injecting malicious JavaScript code into the attribut...

6.4CVSS0.00466EPSS
Exploits0References2
OSV
OSVadded 2024/07/11 5:15 p.m.1 views

UBUNTU-CVE-2024-6484

Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the associated CVE has been rescinded...

6.4CVSS6.8AI score
Exploits0References4
OSV
OSVadded 2024/07/11 5:15 p.m.0 views

UBUNTU-CVE-2024-6485

A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting XSS attacks. The vulnerability is associated with the data-loading-text attribute within the button plugin. This vulnerability can be exploited by injecting malicious JavaScript code into the attribut...

6.4CVSS6.6AI score0.00466EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2024/07/11 5:8 p.m.11 views

CVE-2024-6485

A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting XSS attacks. The vulnerability is associated with the data-loading-text attribute within the button plugin. This vulnerability can be exploited by injecting malicious JavaScript code into the attribut...

6.4CVSS6.6AI score0.00466EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2024/07/11 5:8 p.m.21 views

CVE-2024-6485 XSS in Bootstrap button component

A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting XSS attacks. The vulnerability is associated with the data-loading-text attribute within the button plugin. This vulnerability can be exploited by injecting malicious JavaScript code into the attribut...

6.4CVSS6.1AI score0.00466EPSS
Exploits0References1
CVE
CVEadded 2024/07/11 5:8 p.m.134 views

CVE-2024-6485

CVE-2024-6485 is a Bootstrap XSS vulnerability in the button component’s data-loading-text attribute. Affected: Bootstrap 3.x (notably Bootstrap 3.x series); impact is cross-site scripting when the loading state is triggered. Mitigation: Debian LTS advisory indicates fixed in 3.4.1+dfsg-2+deb11u1...

6.4CVSS6AI score0.00466EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/07/11 5:8 p.m.23 views

CVE-2024-6485 XSS in Bootstrap button component

A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting XSS attacks. The vulnerability is associated with the data-loading-text attribute within the button plugin. This vulnerability can be exploited by injecting malicious JavaScript code into the attribut...

6.4CVSS0.00466EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2024/07/11 5:3 p.m.20 views

CVE-2024-6484

Removed by vendor...

7AI score
Exploits0
Vulnrichment
Vulnrichmentadded 2024/07/11 5:3 p.m.31 views

CVE-2024-6484

...

6.3AI score
Exploits0
Cvelist
Cvelistadded 2024/07/11 5:3 p.m.53 views

CVE-2024-6484

...

Exploits0
CVE
CVEadded 2024/07/11 5:3 p.m.261 views

CVE-2024-6484

CVE-2024-6484 is rejected/not used; rescinded per initial description.

5.9AI score
Exploits0
CNNVD
CNNVDadded 2024/07/11 12:0 a.m.3 views

Number withdrawn

Bootstrap is an open source web front-end framework developed using HTML, CSS, and JavaScript by Bootstrap. ch is a ClickHouse open source low-level Go client for ClickHouse. This CVE number has been withdrawn...

6.9AI score
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/07/11 12:0 a.m.4 views

PT-2024-37660

Name of the Vulnerable Software and Affected Versions bootstrap affected versions not specified Description A security issue has been discovered that could enable Cross-Site Scripting XSS attacks. The issue is associated with the data-loading-text attribute within the button plugin. This can be...

6.4CVSS6.8AI score0.00466EPSS
Exploits0References31
Positive Technologies
Positive Technologiesadded 2024/07/11 12:0 a.m.5 views

PT-2024-37659

Name of the Vulnerable Software and Affected Versions Bootstrap affected versions not specified Description A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting XSS attacks. The issue is present in the carousel component, where the data-slide and data-slide-...

6.4CVSS6.9AI score0.00466EPSS
Exploits0References28
RubySec
RubySecadded 2024/07/11 12:0 a.m.20 views

Bootstrap Cross-Site Scripting (XSS) vulnerability

A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting XSS attacks. The issue is present in the carousel component, where the data-slide and data-slide-to attributes can be exploited through the href attribute of an tag due to inadequate sanitization. This...

6.2AI score
Exploits0References1
CNNVD
CNNVDadded 2024/07/11 12:0 a.m.2 views

Bootstrap Security Vulnerabilities

Bootstrap is an open source web front-end framework developed using HTML, CSS and JavaScript by Bootstrap Inc. A security vulnerability exists in Bootstrap version 3.4.5, which stems from susceptibility to cross-site scripting XSS attacks, which can lead to the injection of malicious scripts and...

6.4CVSS6.1AI score0.00466EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/07/11 12:0 a.m.4 views

PT-2024-37693

Name of the Vulnerable Software and Affected Versions Bootstrap affected versions not specified Description A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting XSS attacks. The issue is present in the carousel component, where the data-slide and data-slide-...

6.4CVSS7AI score0.00466EPSS
Exploits0References29
Rows per page
Query Builder