6.1

CVSS Score

Basic Information

CVE ID

CVE-2016-10735

GHSA ID

GHSA-4p24-vmcr-4gqj

EPSS Score

CWE

CWE-79

Published

1/17/2019

Updated

8/5/2024

KEV Status

Technology

JavaScript

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2016-10735

CVE-2016-10735:
Bootstrap Cross-site Scripting vulnerability

In Bootstrap 2.x from 2.0.4, 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute. Note that this is a different vulnerability than CVE-2018-14041.

See https://blog.getbootstrap.com/2018/12/13/bootstrap-3-4-0/ for more info.

(GitHub Advisory)

6.1

CVSS Score

Basic Information

CVE ID

CVE-2016-10735

GHSA ID

GHSA-4p24-vmcr-4gqj

EPSS Score

CWE

CWE-79

Published

1/17/2019

Updated

8/5/2024

KEV Status

Technology

JavaScript

Technical Details

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
bootstrap	npm	>= 4.0.0-beta, < 4.0.0-beta.2	4.0.0-beta.2
bootstrap	npm	>= 2.0.4, < 3.4.0	3.4.0
org.webjars:bootstrap	maven	>= 2.0.4, < 3.4.0	3.4.0
org.webjars:bootstrap	maven	>= 4.0.0-beta, < 4.0.0-beta.2	4.0.0-beta.2
bootstrap	rubygems	< 4.0.0-beta.2	4.0.0-beta.2
twbs/bootstrap	composer	>= 2.0.4, < 3.4.0	3.4.0
twbs/bootstrap	composer	>= 4.0.0-beta, < 4.0.0-beta.2	4.0.0-beta.2
bootstrap	nuget	>= 2.0.4, < 3.4.0	3.4.0
bootstrap	nuget	>= 4.0.0-beta, < 4.0.0-beta.2	4.0.0-beta.2
bootstrap-sass	npm	>= 2.0.4, < 3.4.0	3.4.0
bootstrap-sass	rubygems	>= 2.0.4, < 3.4.0	3.4.0
bootstrap.sass	nuget	>= 4.0.0-beta, < 4.0.0-beta.2	4.0.0-beta.2

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from Bootstrap's JavaScript components insecurely handling the data-target attribute. Analysis of the GitHub pull requests (#23679, #23687, #26460) shows fixes focused on replacing direct jQuery HTML parsing with document.querySelector() and selector validation. Affected components (Carousel, Collapse, Modal, Tab) all processed user-controlled data-target values without proper sanitization, allowing injection of malicious HTML elements containing event handlers. The high confidence comes from explicit security patches in these files and vulnerability reproduction examples demonstrating XSS via data-target attributes.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

In *ootstr*p *.x *rom *.*.*, *.x ***or* *.*.* *n* *.x-**t* ***or* *.*.*-**t*.*, XSS is possi*l* in t** **t*-t*r**t *ttri*ut*. Not* t**t t*is is * *i***r*nt vuln*r**ility t**n *V*-****-*****. S** *ttps://*lo*.**t*ootstr*p.*om/****/**/**/*ootstr*p-*-*

Reasoning

T** vuln*r**ility st*ms *rom *ootstr*p's J*v*S*ript *ompon*nts ins**ur*ly **n*lin* t** **t*-t*r**t *ttri*ut*. *n*lysis o* t** *it*u* pull r*qu*sts (#*****, #*****, #*****) s*ows *ix*s *o*us** on r*pl**in* *ir**t jQu*ry *TML p*rsin* wit* *o*um*nt.qu*r

6.1

Basic Information

Concerned about an active attack path?

CVE-2016-10735: Bootstrap Cross-site Scripting vulnerability

6.1

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2016-10735:
Bootstrap Cross-site Scripting vulnerability

Vulnerability Intelligence
Miggo AI