Description
In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.
Remediation
References
Related Vulnerabilities
WordPress Plugin Gravity Forms Cross-Site Scripting (1.9.15.11)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2017-15095)
WordPress Plugin WP-Polls Cross-Site Scripting (2.69)
Atlassian Jira Improper Authentication Vulnerability (CVE-2021-26070)
WordPress Plugin Eshop Magic Arbitrary File Disclosure (0.1)