VulnerableCode Package Details - pkg:maven/org.webjars/bootstrap@1.3.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:maven/org.webjars/bootstrap@1.3.0

Essentials
History (8)

purl	pkg:maven/org.webjars/bootstrap@1.3.0

Next non-vulnerable version	4.0.0-alpha
Latest non-vulnerable version	5.0.0
Risk	3.1

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-br4c-7x9j-g3f6 Aliases: CVE-2018-20676 GHSA-3mgp-fx93-9xv5	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') In Bootstrap, XSS is possible in the tooltip data-viewport attribute.	3.4.0 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-hqne-7h6h-3ff8 Aliases: CVE-2018-20677 GHSA-ph58-4vrj-w6hr	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') In Bootstrap, XSS is possible in the affix configuration target property.	3.4.0 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T20:51:18.767932+00:00	GitLab Importer	Affected by	VCID-br4c-7x9j-g3f6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.webjars/bootstrap/CVE-2018-20676.yml	38.4.0
2026-04-16T20:51:14.676031+00:00	GitLab Importer	Affected by	VCID-hqne-7h6h-3ff8	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.webjars/bootstrap/CVE-2018-20677.yml	38.4.0
2026-04-11T22:02:01.463825+00:00	GitLab Importer	Affected by	VCID-br4c-7x9j-g3f6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.webjars/bootstrap/CVE-2018-20676.yml	38.3.0
2026-04-11T22:01:58.155760+00:00	GitLab Importer	Affected by	VCID-hqne-7h6h-3ff8	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.webjars/bootstrap/CVE-2018-20677.yml	38.3.0
2026-04-02T22:15:01.844567+00:00	GitLab Importer	Affected by	VCID-br4c-7x9j-g3f6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.webjars/bootstrap/CVE-2018-20676.yml	38.1.0
2026-04-02T22:14:58.939345+00:00	GitLab Importer	Affected by	VCID-hqne-7h6h-3ff8	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.webjars/bootstrap/CVE-2018-20677.yml	38.1.0
2026-04-01T16:32:34.419273+00:00	GitLab Importer	Affected by	VCID-br4c-7x9j-g3f6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.webjars/bootstrap/CVE-2018-20676.yml	38.0.0
2026-04-01T16:32:31.223270+00:00	GitLab Importer	Affected by	VCID-hqne-7h6h-3ff8	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.webjars/bootstrap/CVE-2018-20677.yml	38.0.0