Skip to main content
Components
Vulnerabilities
Pricing
MCP
API
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
org.webjars.bowergithub.jasny/bootstrap 4.… | Sonatype Guide
Get full component data and automated fixes with Sonatype Guide.
Sign up for free
maven
org.webjars.bowergithub.jasny
bootstrap
4.0.0
bootstrap 4.0.0
Latest
org.webjars.bowergithub.jasny
Published
Dec 14, 2020
•
Policy
compliance
maven Registry
Developer Trust Score
Recommended Version:
x.y.z
Recommended upgrade that meets your policy.
Compare Versions
Overview
Overview
Versions
3
Versions
3
Vulnerabilities
10
Vulnerabilities
10
Dependencies
0
Dependencies
0
Severity
Critical
(0)
High
(2)
Medium
(8)
Low
(0)
CVSS Score
0.0
10.0
EPSS Score
0.0
1.0
Malware
KEV Status
Published
Filter
Sort: Published (Newest first)
8.2
sonatype-2023-0042
jszip - Arbitrary File Write via Archive Extraction (Zip Slip)
affected
Severity
High
Published
Jan 9, 2023
6.1
CVE-2019-11358
jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
affected
Severity
Medium
Published
Jul 29, 2022
5.3
CVE-2021-23413
This affects the package jszip before 3.7.0. Crafting a new zip file with filenames set to Object prototype values (e.g __proto__, toString, etc) results in a returned object with a modified prototype instance.
affected
Severity
Medium
Published
Jul 26, 2021
6.1
CVE-2020-11023
EXPLOITED
In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
affected
Severity
Medium
Published
Apr 30, 2020
6.1
sonatype-2020-0187
jQuery - Cross-Site Scripting (XSS)
affected
Severity
Medium
Published
Apr 14, 2020
6.1
sonatype-2016-0610
qunitjs - Cross-Site Scripting (XSS)
affected
Severity
Medium
Published
Jun 15, 2019
4.6
sonatype-2015-0253
qunitjs - Potential XSS attack if available on user-accessible site
affected
Severity
Medium
Published
Aug 1, 2018
6.5
sonatype-2014-0026
jQuery - Cross-Site Scripting (XSS)
affected
Severity
Medium
Published
Mar 28, 2017
7.5
sonatype-2016-0133
jquery - Uncontrolled Resource Consumption
affected
Severity
High
Published
Mar 28, 2017
6.1
sonatype-2016-0107
jQuery - Cross-Site Scripting (XSS) [CVE-2015-9251]
affected
Severity
Medium
Published
Mar 28, 2017
