| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-4076 | Slider Bootstrap Carousel <= 1.0.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes | felipermendes | Slider Bootstrap Carousel | Medium | 6.4 | 2026-04-22 07:45:33 | Deep Dive |
| CVE-2025-62095 | WordPress Bootstrap Modals plugin <= 1.3.2 - Cross Site Scripting (XSS) vulnerability | neilgee | Bootstrap Modals | Medium | 6.5 | 2025-12-31 13:16:59 | Deep Dive |
| CVE-2025-11764 | Shortcodes Bootstrap <= 1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | fastmover | Shortcodes Bootstrap | Medium | 6.4 | 2025-11-21 07:31:56 | Deep Dive |
| CVE-2025-11822 | WP Bootstrap Tabs <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | virtus-designs | WP Bootstrap Tabs | Medium | 6.4 | 2025-11-11 03:30:32 | Deep Dive |
| CVE-2025-11753 | Multi-language Responsive Portfolio WordPress <= 1.0 - Authenticated (Admin+) Stored Cross-Site Scripting | augustinfotech | Bootstrap Multi-language Responsive Portfolio | Medium | 4.4 | 2025-11-04 04:27:23 | Deep Dive |
| CVE-2025-8776 | Epic Bootstrap Buttons <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via icol Parameter | mikemayhem3030 | Epic Bootstrap Buttons | Medium | 6.4 | 2025-10-03 11:17:18 | Deep Dive |
| CVE-2025-9991 | Tiny Bootstrap Elements Light <= 4.3.34 - Unauthenticated Local File Inclusion | migli | Tiny Bootstrap Elements Light | High | 8.1 | 2025-09-30 03:35:31 | Deep Dive |
| CVE-2025-54733 | WordPress All Bootstrap Blocks Plugin <= 1.3.28 - Broken Access Control Vulnerability | all_bootstrap_blocks | All Bootstrap Blocks | Medium | 6.5 | 2025-08-28 12:37:39 | Deep Dive |
| CVE-2025-30951 | WordPress BlockStrap Page Builder - Bootstrap Blocks plugin <= 0.1.36 - Cross Site Scripting (XSS) Vulnerability | Stiofan | BlockStrap Page Builder - Bootstrap Blocks | Medium | 6.5 | 2025-06-06 12:54:12 | Deep Dive |
| CVE-2024-12722 | Twitter Bootstrap Collapse aka Accordian Shortcode <= 1.0 - Stored XSS via Shortcode | Unknown | Twitter Bootstrap Collapse aka Accordian Shortcode | - | - | 2025-05-15 20:06:54 | Deep Dive |
| CVE-2025-1647 | XSS in Bootstrap title attribute for Tooltip and Popover | Bootstrap | Bootstrap | Medium | 5.6 | 2025-05-15 16:26:08 | Deep Dive |
| CVE-2025-3901 | Bootstrap Site Alert - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-042 | Drupal | Bootstrap Site Alert | 中危 | - | 2025-04-23 17:07:53 | Deep Dive |
| CVE-2025-32672 | WordPress Ultimate Bootstrap Elements for Elementor plugin <= 1.4.9 - Local File Inclusion Vulnerability | g5theme | Ultimate Bootstrap Elements for Elementor | High | 8.1 | 2025-04-11 08:43:03 | Deep Dive |
| CVE-2025-3060 | Flattern – Multipurpose Bootstrap Business Profile - Critical - Unsupported - SA-CONTRIB-2025-005 | Drupal | Flattern – Multipurpose Bootstrap Business Profile | 中危 | - | 2025-03-31 22:21:42 | Deep Dive |
| CVE-2025-30527 | WordPress My Bootstrap Menu plugin <= 1.2.1 - Stored Cross Site Scripting (XSS) vulnerability | codetoolbox | My Bootstrap Menu | Medium | 5.9 | 2025-03-24 13:46:40 | Deep Dive |
| CVE-2025-27826 | Backdrop CMS 跨站脚本漏洞 | backdropcms | Bootstrap Lite theme | Medium | 6.4 | 2025-03-07 00:00:00 | Deep Dive |
| CVE-2025-27825 | Backdrop CMS 跨站脚本漏洞 | backdropcms | Bootstrap 5 Lite theme | Medium | 6.4 | 2025-03-07 00:00:00 | Deep Dive |
| CVE-2025-26551 | WordPress Bootstrap collapse plugin <= 1.0.4 - CSRF to Stored Cross-Site Scripting vulnerability | sureshdsk | Bootstrap collapse | High | 7.1 | 2025-02-13 13:52:52 | Deep Dive |
| CVE-2024-13549 | All Bootstrap Blocks <= 1.3.26 - Authenticated (Contributor+) Stored Cross-Site Scripting | areoimiles | All Bootstrap Blocks | Medium | 6.4 | 2025-01-30 13:42:01 | Deep Dive |
| CVE-2024-13545 | Bootstrap Ultimate <= 1.4.9 - Unauthenticated Limited Local File Inclusion | eminozlem | Bootstrap Ultimate | Critical | 9.8 | 2025-01-24 08:23:41 | Deep Dive |