PT-2020-21231 · Bootstrap · Bootstrap-Vue
Published
2020-09-02
·
Updated
2020-09-02
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
bootstrap-vue versions prior to 2.0.0-rc.12
Description
The issue is related to insufficient input sanitization, making components vulnerable to Cross-Site Scripting through the
options variable. This may lead to the execution of malicious JavaScript on the user's browser.Recommendations
Upgrade to version 2.0.0-rc.12 or later.
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Bootstrap-Vue