Security Advisory

CVE-2019-20921

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-30 12:30:36

Last updated 2024-11-25 17:45:55

Assigner mitre

State PUBLISHED

Description

bootstrap-select before 1.13.6 allows Cross-Site Scripting (XSS). It does not escape title values in OPTION elements. This may allow attackers to execute arbitrary JavaScript in a victims browser.

← Browse all CVEs View on cve.org ↗