Getbootstrap

Bootstrap

10 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2024-6531

Exploit
  • EPSS 0.03%
  • Published 11.07.2024 18:15:06
  • Last modified 01.08.2025 18:15:31

Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the assoc...

6.1

CVE-2024-6484

Exploit
  • EPSS 0.04%
  • Published 11.07.2024 17:15:17
  • Last modified 01.08.2025 17:15:27

Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the assoc...

6.4

CVE-2024-6485

  • EPSS 0.07%
  • Published 11.07.2024 17:15:17
  • Last modified 21.11.2024 09:49:43

A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting (XSS) attacks. The vulnerability is associated with the data-loading-text attribute within the button plugin. This vulnerability can be exploited by inje...

6.1

CVE-2019-8331

  • EPSS 2.29%
  • Published 20.02.2019 16:29:00
  • Last modified 21.11.2024 04:49:42

In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.

6.1

CVE-2018-20676

  • EPSS 6.26%
  • Published 09.01.2019 05:29:01
  • Last modified 21.11.2024 04:01:58

In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.

6.1

CVE-2018-20677

Exploit
  • EPSS 14.8%
  • Published 09.01.2019 05:29:01
  • Last modified 21.11.2024 04:01:58

In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.

6.1

CVE-2016-10735

Exploit
  • EPSS 6.15%
  • Published 09.01.2019 05:29:00
  • Last modified 21.11.2024 02:44:37

In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.

6.1

CVE-2018-14040

Exploit
  • EPSS 1.63%
  • Published 13.07.2018 14:29:00
  • Last modified 21.11.2024 03:48:29

In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.

6.1

CVE-2018-14041

Exploit
  • EPSS 7.88%
  • Published 13.07.2018 14:29:00
  • Last modified 21.11.2024 03:48:29

In Bootstrap before 4.1.2, XSS is possible in the data-target property of scrollspy.

6.1

CVE-2018-14042

Exploit
  • EPSS 1.7%
  • Published 13.07.2018 14:29:00
  • Last modified 21.11.2024 03:48:29

In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.