Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bootstrap vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2022-1726
Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table before 1.20.2. Disclosing session cookies, disclosing secure session data, exfiltrating data to third-parties.
Bootstrap-table Bootstrap Table
383
VMScore
CVE-2021-23472
This affects versions prior to 1.19.1 of package bootstrap-table. A type confusion vulnerability can lead to a bypass of input sanitization when the input provided to the escapeHTML function is an array (instead of a string) even if the escape attribute is set.
Bootstrap-table Bootstrap Table
NA
CVE-2022-4777
The Bootstrap Shortcodes WordPress plugin up to and including 3.4.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored...
Bootstrap Shortcodes Project Bootstrap Shortcodes
384
VMScore
CVE-2018-14041
In Bootstrap prior to 4.1.2, XSS is possible in the data-target property of scrollspy.
Getbootstrap Bootstrap
Getbootstrap Bootstrap 4.0.0
4 Github repositories
383
VMScore
CVE-2021-23398
All versions of package react-bootstrap-table are vulnerable to Cross-site Scripting (XSS) via the dataFormat parameter. The problem is triggered when an invalid React element is returned, leading to dangerouslySetInnerHTML being used, which does not sanitize the output.
React-bootstrap-table Project React-bootstrap-table -
383
VMScore
CVE-2020-25089
Ecommerce-CodeIgniter-Bootstrap prior to 2020-08-03 allows XSS in application/modules/admin/views/ecommerce/discounts.php.
Ecommerce-codeigniter-bootstrap Project Ecommerce-codeigniter-bootstrap
383
VMScore
CVE-2020-25090
Ecommerce-CodeIgniter-Bootstrap prior to 2020-08-03 allows XSS in application/modules/admin/views/ecommerce/publish.php.
Ecommerce-codeigniter-bootstrap Project Ecommerce-codeigniter-bootstrap
383
VMScore
CVE-2020-25091
Ecommerce-CodeIgniter-Bootstrap prior to 2020-08-03 allows XSS in application/modules/vendor/views/add_product.php.
Ecommerce-codeigniter-bootstrap Project Ecommerce-codeigniter-bootstrap
383
VMScore
CVE-2020-25092
Ecommerce-CodeIgniter-Bootstrap prior to 2020-08-03 allows XSS in _parts/header.php, within application/views/templates/clothesshop, application/views/templates/greenlabel, and application/views/templates/redlabel.
Ecommerce-codeigniter-bootstrap Project Ecommerce-codeigniter-bootstrap
NA
CVE-2022-4576
The Easy Bootstrap Shortcode WordPress plugin up to and including 4.5.4 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks ...
Easy Bootstrap Shortcode Project Easy Bootstrap Shortcode
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »