OPENSUSE-SU-2025:15240-1 libQt5Bootstrap-devel-static-32bit-5.15.17+kde122-2.1 on GA media

These are all security issues fixed in the libQt5Bootstrap-devel-static-32bit-5.15.17+kde122-2.1 package on the GA media of openSUSE Tumbleweed...

Bootstrap < 4.0.0 Multiples Cross-Site Scripting

According to its self-reported version number, Bootstrap is prior to 4.0.0. Therefore, it may be affected by Multiples Cross-Site Scripting XSS vulnerability : - A Cross-Site Scripting XSS vulnerability has been identified within the Bootstrap 3 Button component. - A Cross-Site Scripting XSS...

Bootstrap 3.2.x <= 3.4.1 Cross-Site Scripting

According to its self-reported version number, Bootstrap is 3.2.x prior 3.4.1 . Therefore, it may be affected by a Cross-Site Scripting XSS vulnerability within the Carousel component. Note that the scanner has not tested for these issues but has instead relied only on the application's...

Bootstrap Unsupported Version

The installation of Boostrap detected on the remote host is no longer supported. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security vulnerabilities. No source data...

Bootstrap 4.x <= 4.6.2 Cross-Site Scripting

According to its self-reported version number, Bootstrap is 4.x prior 4.6.2 . Therefore, it may be affected by a Cross-Site Scripting XSS vulnerability within the Carousel component. Note that the scanner has not tested for these issues but has instead relied only on the application's self-report...

Conjure Position Department Service Quality Evaluation System 安全漏洞

Conjure Position Department Service Quality Evaluation System is a position department service quality evaluation system from China Star Space Conjure. A security vulnerability exists in Conjure Position Department Service Quality Evaluation System version 1.0.11 and earlier versions, which...

Malicious code in bootstrap-modules (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a45d845a42d64eb0f9732d82ec558f52eed95f2e905ffec7f0ae2849f78104e1 Any computer that has this package installed or running should be considered...

MAL-2025-5370 Malicious code in bootstrap-modules (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a45d845a42d64eb0f9732d82ec558f52eed95f2e905ffec7f0ae2849f78104e1 Any computer that has this package installed or running should be considered...

Malicious code in @glofe/bootstrap (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 695277150d0aac29d1df54911ddf4b154868bbf46e00fb43e8e8d6e251793156 The OpenSSF Package Analysis project identified '@glofe/bootstrap' @...

CVE-2025-30951

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stiofan BlockStrap Page Builder - Bootstrap Blocks blockstrap-page-builder-blocks allows Stored XSS.This issue affects BlockStrap Page Builder - Bootstrap Blocks: from n/a through = 0.1.36...

CVE-2025-30951

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stiofan BlockStrap Page Builder - Bootstrap Blocks blockstrap-page-builder-blocks allows Stored XSS.This issue affects BlockStrap Page Builder - Bootstrap Blocks: from n/a through = 0.1.36...

CVE-2025-30951 WordPress BlockStrap Page Builder - Bootstrap Blocks plugin <= 0.1.36 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stiofan BlockStrap Page Builder - Bootstrap Blocks blockstrap-page-builder-blocks allows Stored XSS.This issue affects BlockStrap Page Builder - Bootstrap Blocks: from n/a through = 0.1.36...

CVE-2025-30951 WordPress BlockStrap Page Builder - Bootstrap Blocks plugin <= 0.1.36 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stiofan BlockStrap Page Builder - Bootstrap Blocks blockstrap-page-builder-blocks allows Stored XSS.This issue affects BlockStrap Page Builder - Bootstrap Blocks: from n/a through = 0.1.36...

PT-2025-24173 · Unknown · Stiofan Blockstrap Page Builder

Name of the Vulnerable Software and Affected Versions: Stiofan BlockStrap Page Builder - Bootstrap Blocks versions 0.1.36 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS...

USN-7556-1: Bootstrap vulnerabilities

It was discovered that Bootstrap did not correctly sanitize certain input in the carousel component. An attacker could possibly use this issue to execute a cross-site scripting XSS attack. CVE-2024-6484, CVE-2024-6531 It was discovered that Bootstrap did not correctly sanitize certain input in th...

USN-7556-1 twitter-bootstrap3, twitter-bootstrap4 vulnerabilities

It was discovered that Bootstrap did not correctly sanitize certain input in the carousel component. An attacker could possibly use this issue to execute a cross-site scripting XSS attack. CVE-2024-6484, CVE-2024-6531 It was discovered that Bootstrap did not correctly sanitize certain input in th...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 / 25.04 : Bootstrap vulnerabilities (USN-7556-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7556-1 advisory. It was discovered that Bootstrap did not correctly sanitize certain input in the carousel...

com.lightbend.akka.management:akka-management-cluster-bootstrap_3 (>=1.3.0 <=1.4.1), com.lightbend.akka.management:akka-management-cluster-http_3 (>=1.3.0 <=1.4.1) +2 more potentially affected by CVE-2025-46548 via com.lightbend.akka.management:akka-management_3 (>=1.3.0 <=1.4.1)

com.lightbend.akka.management:akka-management3 MAVEN version =1.3.0, =1.3.0, =1.3.0, =1.3.0, =1.3.0, =1.4.1 Source cves: CVE-2025-46548 Source advisory: OSV:GHSA-9QVJ-RPJ8-V5C8...

org.apache.pekko:pekko-management-cluster-bootstrap_2.12 (>=1.0.0 <=1.1.0-M1), org.apache.pekko:pekko-management-cluster-http_2.12 (>=1.0.0 <=1.1.0-M1) +2 more potentially affected by CVE-2025-46548 via org.apache.pekko:pekko-management_2.12 (>=1.0.0 <=1.1.0)

org.apache.pekko:pekko-management2.12 MAVEN version =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.1.0-M1 Source cves: CVE-2025-46548 Source advisory: OSV:GHSA-9QVJ-RPJ8-V5C8...

org.apache.pekko:pekko-management-cluster-bootstrap_3 (>=1.0.0 <=1.1.0-M1), org.apache.pekko:pekko-management-cluster-http_3 (>=1.0.0 <=1.1.0-M1) +2 more potentially affected by CVE-2025-46548 via org.apache.pekko:pekko-management_3 (>=1.0.0 <=1.1.0)

org.apache.pekko:pekko-management3 MAVEN version =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.1.0-M1 Source cves: CVE-2025-46548 Source advisory: OSV:GHSA-9QVJ-RPJ8-V5C8...