CVE-2019-20921
Summary: CVE-2019-20921 affects bootstrap-select (before 1.13.6) by not escaping title values in OPTION elements, enabling Cross-Site Scripting (XSS) in the victim’s browser. Public details in the provided documents identify the vulnerable component as bootstrap-select and confirm the root cause ...