Upgrade activestorage to version 5.2.4.3, 6.0.3.1 or higher.

org.webjars.bowergithub.bootstrap-vue:bootstrap-vue@2.0.0-rc.11 vulnerabilities

latest version

2.0.0-rc.11

first published

6 years ago

latest version published

6 years ago

licenses detected

MIT
[2.0.0-rc.11,)

package manager

View on Maven Repository

Go back to all versions of this package

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.webjars.bowergithub.bootstrap-vue:bootstrap-vue package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
H Cross-site Scripting (XSS) org.webjars.bowergithub.bootstrap-vue:bootstrap-vue provides one of the most comprehensive implementations of Bootstrap 4 components and grid system for Vue.js and with extensive and automated WAI-ARIA accessibility markup. Affected versions of this package are vulnerable to Cross-site Scripting (XSS). Insufficient input sanitisation and escaping may lead to the execution of malicious JavaScript on the user's browser. How to fix Cross-site Scripting (XSS)? There is no fixed version for `org.webjars.bowergithub.bootstrap-vue:bootstrap-vue`.	[0,)

Cross-site Scripting (XSS)

org.webjars.bowergithub.bootstrap-vue:bootstrap-vue provides one of the most comprehensive implementations of Bootstrap 4 components and grid system for Vue.js and with extensive and automated WAI-ARIA accessibility markup.

Affected versions of this package are vulnerable to Cross-site Scripting (XSS). Insufficient input sanitisation and escaping may lead to the execution of malicious JavaScript on the user's browser.

How to fix Cross-site Scripting (XSS)?

There is no fixed version for org.webjars.bowergithub.bootstrap-vue:bootstrap-vue.

[0,)

Go back to all versions of this package