Homepage
About Snyk

org.webjars.bower:bootstrap-select@1.13.11 vulnerabilities

  • latest version

    1.13.11

  • first published

    9 years ago

  • latest version published

    5 years ago

  • licenses detected

  • package manager

    View on Maven Repository
Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.webjars.bower:bootstrap-select package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Cross-site Scripting (XSS)

org.webjars.bower:bootstrap-select is an open source toolkit for developing with HTML, CSS, and JS. Quickly prototype your ideas or build your entire app with our Sass variables and mixins, responsive grid system, extensive prebuilt components, and powerful plugins built on jQuery.

Affected versions of this package are vulnerable to Cross-site Scripting (XSS). The package does not escape title values on <option> tags. This may allow attackers to execute arbitrary JavaScript in a victim's browser.

How to fix Cross-site Scripting (XSS)?

There is no fixed version for org.webjars.bower:bootstrap-select.

[0,)
Go back to all versions of this package