Bootstrap is a web front-end framework developed using HTML, CSS, and JavaScript. Bootstrap versions v3.1.11 and v3.3.7 are vulnerable to a cross-site scripting vulnerability that originates in the Title parameter in /vendor/views/add_product.php. An attacker could exploit this vulnerability to execute arbitrary scripting code in the context of the affected site.
CPE | Name | Operator | Version |
---|---|---|---|
bittorrent bootstrap | eq | 3.3.7 | |
bittorrent bootstrap | eq | 3.1.11 |