CVE-2019-10215

Summary

Bootstrap-3-Typeahead after version 4.0.2 is vulnerable to a cross-site scripting flaw in the highlighter() function. An attacker could exploit this via user interaction to execute code in the user's browser.

Affected Software

VendorProductVersion RangeStatus
Red Hatbootstrap3-typeahead.jsafter version bootstrap3-typeahead 4.0.2affected

Weaknesses

  • CWE-79: CWE-79

ADP Enrichment

CVE Program Container

Additional References

References