Known Vulnerabilities for products from Getbootstrap

Listed below are 8 of the newest known vulnerabilities associated with the vendor "Getbootstrap".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2019-10842 Arbitrary code execution (via backdoor code) was discovered in bootstrap-sass 3.2.0.3, when downloaded from rubygems.org. An ... 9.8 - CRITICAL 2019-04-04 2019-04-11
CVE-2019-8331 In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute. 6.1 - MEDIUM 2019-02-20 2023-11-07
CVE-2018-20677 In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property. 6.1 - MEDIUM 2019-01-09 2023-11-07
CVE-2018-20676 In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute. 6.1 - MEDIUM 2019-01-09 2023-11-07
CVE-2018-14042 In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip. 6.1 - MEDIUM 2018-07-13 2023-11-07
CVE-2018-14041 In Bootstrap before 4.1.2, XSS is possible in the data-target property of scrollspy. 6.1 - MEDIUM 2018-07-13 2023-11-07
CVE-2018-14040 In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute. 6.1 - MEDIUM 2018-07-13 2023-11-07
CVE-2016-10735 In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vul... 6.1 - MEDIUM 2019-01-09 2021-07-22

Known software with vulnerabilities from Getbootstrap

Type Vendor Product Version
ApplicationGetbootstrapBootstrap1.0.0
ApplicationGetbootstrapBootstrap-sass3.2.0.3