Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:npm/bootstrap-select@1.13.6
purl pkg:npm/bootstrap-select@1.13.6
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-74d5-h6tu-zbg6 Cross-Site Scripting in bootstrap-select Versions of `bootstrap-select` prior to 1.13.6 are vulnerable to Cross-Site Scripting (XSS). The package does not escape `title` values on `<option>` tags. This may allow attackers to execute arbitrary JavaScript in a victim's browser. ## Recommendation Upgrade to version 1.13.6 or later. GHSA-9r7h-6639-v5mw
GMS-2020-125
VCID-gj58-zp49-2bdc Cross-site scripting in bootstrap-select bootstrap-select before 1.13.6 allows Cross-Site Scripting (XSS). It does not escape title values in OPTION elements. This may allow attackers to execute arbitrary JavaScript in a victim's browser. CVE-2019-20921
GHSA-7c82-mp33-r854

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T21:22:32.311830+00:00 GitLab Importer Fixing VCID-gj58-zp49-2bdc https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/bootstrap-select/CVE-2019-20921.yml 38.4.0
2026-04-16T21:09:11.205196+00:00 GitLab Importer Fixing VCID-74d5-h6tu-zbg6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/bootstrap-select/GMS-2020-125.yml 38.4.0
2026-04-11T22:35:07.364604+00:00 GitLab Importer Fixing VCID-gj58-zp49-2bdc https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/bootstrap-select/CVE-2019-20921.yml 38.3.0
2026-04-11T22:20:57.803545+00:00 GitLab Importer Fixing VCID-74d5-h6tu-zbg6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/bootstrap-select/GMS-2020-125.yml 38.3.0
2026-04-02T22:46:13.772567+00:00 GitLab Importer Fixing VCID-gj58-zp49-2bdc https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/bootstrap-select/CVE-2019-20921.yml 38.1.0
2026-04-02T22:32:58.175608+00:00 GitLab Importer Fixing VCID-74d5-h6tu-zbg6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/bootstrap-select/GMS-2020-125.yml 38.1.0
2026-04-02T16:56:38.368662+00:00 GHSA Importer Fixing VCID-gj58-zp49-2bdc https://github.com/advisories/GHSA-7c82-mp33-r854 38.1.0
2026-04-02T12:37:11.209699+00:00 GitLab Importer Fixing VCID-74d5-h6tu-zbg6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/bootstrap-select/GMS-2020-125.yml 38.0.0
2026-04-01T17:04:04.742442+00:00 GitLab Importer Fixing VCID-gj58-zp49-2bdc https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/bootstrap-select/CVE-2019-20921.yml 38.0.0
2026-04-01T15:58:32.971000+00:00 GHSA Importer Fixing VCID-74d5-h6tu-zbg6 https://github.com/advisories/GHSA-9r7h-6639-v5mw 38.0.0
2026-04-01T13:02:30.838883+00:00 GithubOSV Importer Fixing VCID-gj58-zp49-2bdc https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/05/GHSA-7c82-mp33-r854/GHSA-7c82-mp33-r854.json 38.0.0
2026-04-01T12:59:44.845774+00:00 GithubOSV Importer Fixing VCID-74d5-h6tu-zbg6 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/09/GHSA-9r7h-6639-v5mw/GHSA-9r7h-6639-v5mw.json 38.0.0