bootstrap vulnerabilities

The most popular front-end framework for developing responsive, mobile first projects on the web.

Latest version 4.3.1
First published a month ago
Latest version published 18 hours ago

Licenses detected

  • license: Unknown >=0.0.1 <3.1.1
  • license: MIT >=3.1.1
Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the bootstrap package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • M
Cross-site Scripting (XSS)
<3.4.1,>=4.0.0 <4.3.1 Not available 15 Feb, 2019
  • M
Cross-site Scripting (XSS)
<3.4.0 Not available 10 Jan, 2019
  • M
Cross-site Scripting (XSS)
<3.4.0 Not available 10 Jan, 2019
  • M
Cross-site Scripting (XSS)
<3.4.0,>=4.0.0 <4.1.2 Not available 12 Jun, 2018
  • M
Cross-site Scripting (XSS)
>=4.0.0 <4.1.2 Not available 12 Jun, 2018
  • M
Cross-Site Scripting (XSS)
<3.4.0,>=4.0.0-alpha <4.0.0-beta.2 Not available 19 Jan, 2018
  • M
Cross-site Scripting (XSS)
<2.1.0 Not available 10 Apr, 2017