Bootstrap library is vulnerable
Low
S
Sifchain
Submitted None
Actions:
Reported by
sathish87
Vulnerability Details
Technical details and impact analysis
Summary:
The identified library bootstrap, version 4.0.0 is vulnerable
Steps To Reproduce:
Please upgrade to the latest version of bootstrap.
## Supporting Material/References:
https://github.com/twbs/bootstrap/issues/28236
https://github.com/twbs/bootstrap/issues/20184
## Impact
XSS was possible in the tooltip or popover data-template, data-content and data-title attributes.
Report Details
Additional information and metadata
State
Closed
Substate
Not-Applicable
Submitted
Weakness
Inclusion of Functionality from Untrusted Control Sphere