PT-2019-20076 — Twitter Bootstrap

PT-2019-20076 · Twitter · Bootstrap

Published

2019-02-22

Updated

2019-02-22

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Bootstrap 4 versions prior to 4.3.1 Bootstrap 3 versions prior to 3.4.1

Description The issue allows for XSS in the tooltip or popover data-template attribute.

Recommendations For Bootstrap 4 versions prior to 4.3.1, update to version 4.3.1 or later. For Bootstrap 3 versions prior to 3.4.1, update to version 3.4.1 or later.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

GHSA-WH77-3X4M-4Q9G

Affected Products

Bootstrap