VulnerableCode Package Details - pkg:maven/org.webjars.npm/bootstrap@4.0.0-alpha.2

Search for packages

Package details: pkg:maven/org.webjars.npm/bootstrap@4.0.0-alpha.2

Essentials
History (1)

purl	pkg:maven/org.webjars.npm/bootstrap@4.0.0-alpha.2

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-d4k9-se4n-4fh9	Bootstrap Cross-Site Scripting (XSS) vulnerability A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting (XSS) attacks. The issue is present in the carousel component, where the `data-slide` and `data-slide-to` attributes can be exploited through the href attribute of an `<a>` tag due to inadequate sanitization. This vulnerability could potentially enable attackers to execute arbitrary JavaScript within the victim's browser.	CVE-2024-6484 GHSA-9mvj-f7w8-pvh2

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-03T19:09:19.238360+00:00	GitLab Importer	Fixing	VCID-d4k9-se4n-4fh9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.webjars.npm/bootstrap/CVE-2024-6484.yml	37.0.0