Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2016-10735 - Vulnerability Database
Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2016-10735
Medium
Reference:
CVE-2016-10735
Title:
Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:
In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2 XSS is possible in the data-target attribute a different vulnerability than CVE-2018-14041.