Bootstrap – CVE-2018-20677


Kayran has detected that the version of Bootstrap being used is vulnerable to Cross-site scripting (XSS).

Because of this vulnerability, Cross-site scripting (XSS) is possible in the affix configuration target property. Also known as CVE-2018-20677.


CVSS Version 3.x – 6.1 Medium


To prevent CVE-2018-20677, update the version of the Bootstrap being used.
Make sure its version is 3.4.0 or higher.


< Return to all Vulnerabilities

What is a CWE ?

Similar to the article written on CVEs, in this article we will answer the questions :What is CWE ? and, what is the difference between

Read More »