Upgrade Bootstrap to 4.3.1
kumar-muthu opened this issue · comments
To avoid the security issue detailed below, please upgrade the bootstrap version.
In Bootstrap 4 before 4.3.1 and Bootstrap 3 before 3.4.1, XSS is possible in the tooltip or popover data-template attribute. For more information, see: https://blog.getbootstrap.com/2019/02/13/bootstrap-4-3-1-and-3-4-1/