Bootstrap – CVE-2019-8331

Description

Kayran has detected that the version of Bootstrap being used is vulnerable to Cross-site scripting (XSS).

Cross-site scripting (XSS) is possible in the tooltip or popover data-template attribute.
This will allow the attacker to add and modify the data. Also known as CVE-2019-8331.

Severity/Score

CVSS Version 3.x – 6.1 Medium

Recommendation

To fix Bootstrap – CVE-2019-8331, update the version of the Bootstrap being used.
Make sure its version is 4.3.1 or higher.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8331

https://cwe.mitre.org/data/definitions/79.html

< Return to all Vulnerabilities

Bug Bounties

As pirates, we all love plundering, we all love raiding, but mostly, we all love bounties, especially Bug Bounties. Let’s talk about it. Bug Bounties

Read More »

Exposing the GIT

Let’s start with defining the meaning of GIT. GIT – is an open-source system which we use as a tool to store data and information

Read More »