CVE-2018-14040

MEDIUM

Bootstrap <4.1.2 - XSS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2018-14040. PoCs published by Yumeae, Snorlyd.

AI-analyzed exploit summary This repository contains a static HTML file demonstrating multiple Bootstrap XSS vulnerabilities, including CVE-2019-8331, which exploits the Tooltip component's `data-template` attribute. It is designed for educational purposes and requires manual version switching to test different vulnerabilities.

Description

In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.

Exploits (2)

nomisec WORKING POC 3 stars
by Yumeae · poc
https://github.com/Yumeae/Bootstrap-with-XSS

This repository contains a static HTML file demonstrating multiple Bootstrap XSS vulnerabilities, including CVE-2019-8331, which exploits the Tooltip component's `data-template` attribute. It is designed for educational purposes and requires manual version switching to test different vulnerabilities.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Bootstrap v4.x < v4.3.1 and v3.x < v3.4.1
No auth needed
Prerequisites: A browser to open the HTML file · Manual editing of the HTML file to switch Bootstrap versions
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WRITEUP 1 stars
by Snorlyd · poc
https://github.com/Snorlyd/https-nj.gov---CVE-2018-14040

This repository contains a writeup detailing CVE-2018-14040, an XSS vulnerability in Bootstrap versions prior to 4.1.2. It describes how the data-target and data-parent attributes can be exploited to execute arbitrary JavaScript code.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Bootstrap < 4.1.2
No auth needed
Prerequisites: A web application using a vulnerable version of Bootstrap
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (19)

Core 19
Core References
Third Party Advisory mailing-list x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2018/08/msg00027.html
Mailing List mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2019/May/18
Mailing List mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/May/11
Mailing List mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/May/10
Mailing List mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/May/13
Issue Tracking, Patch, Third Party Advisory x_refsource_misc
https://github.com/twbs/bootstrap/pull/26630
Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/twbs/bootstrap/issues/26423
Exploit, Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/twbs/bootstrap/issues/26625
Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2021-14

Scores

CVSS v3 6.1
EPSS 0.0192
EPSS Percentile 83.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (10)
debian/debian_linux 8.0
getbootstrap/bootstrap 4.0.0 alpha (9 CPE variants)
getbootstrap/bootstrap < 3.4.0
npm/bootstrap 4.0.0 - 4.1.2npm
nuget/bootstrap 2.3.0 - 3.4.0NuGet
nuget/bootstrap.sass 4.0.0 - 4.1.2NuGet
org.webjars/bootstrap 4.0.0 - 4.1.2Maven
rubygems/bootstrap 4.0.0 - 4.1.2RubyGems
rubygems/bootstrap-sass 2.3.0 - 3.4.0RubyGems
twbs/bootstrap 2.3.0 - 3.4.0Packagist
Published Jul 13, 2018
Tracked Since Feb 18, 2026