Bootstrap – CVE-2016-10735


Kayran has detected that the version of Bootstrap being used is vulnerable to Cross-site scripting (XSS).
This vulnerability works differently than CVE-2018-14041.

Cross-site scripting (XSS) is possible to use in the data-target attribute.
Also known as CVE-2016-10735.

This vulnerability allows attackers to modify system files and information.


CVSS Version 3.x – 6.1 Medium


To deal with CVE-2016-10735, update to either of the following versions:
To 3.4.0, 4.x-beta versions are also vulnerable up until 4.0.0-beta.2 and higher.


< Return to all Vulnerabilities

Active Directory Hacking

What does Active Directory mean? The Active Directory infrastructure is a critical infrastructure in most organizations, and it forms the backbone of the organization’s computing

Read More »

Blue Team

We’ve talked about The Red Team before, but what about The Blue Team? How is this group different from the red one? Why would we

Read More »

Bug Bounties

As pirates, we all love plundering, we all love raiding, but mostly, we all love bounties, especially Bug Bounties. Let’s talk about it. Bug Bounties

Read More »