Vulnerability

CVE-2024-6484

Report advisory or correction

CVSS Score

Unscored

CVSS Vector

Not Recorded

CWE

CWE-79

References

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6484

[CVE-2024-6484] CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description

Rejected reason: This was not a security issue in Bootstrap. Bootstrap?s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap?s security model, and the associated CVE has been rescinded.