Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
XSS in Bootstrap title attribute for Tooltip and Popover
Vulnerability Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Bootstrap allows Cross-Site Scripting (XSS).This issue affects Bootstrap: from 3.4.1 before 4.0.0.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Bootstrap 安全漏洞
Vulnerability Description
Bootstrap是Bootstrap公司的一款使用HTML、CSS和JavaScript开发的开源Web前端框架。 Bootstrap 3.4.1至4.0.0之前版本存在安全漏洞,该漏洞源于输入中和不当,可能导致跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A