Description
In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.
Remediation
References
Related Vulnerabilities
WordPress Plugin Eventr SQL Injection (1.02.2)
WordPress Plugin QueryWall:Plug'n Play Firewall Cross-Site Scripting (1.1.0)
Python Integer Overflow or Wraparound Vulnerability (CVE-2010-1449)
WordPress Plugin Spiffy Calendar SQL Injection (4.9.11)
Apache Tomcat 7PK - Security Features Vulnerability (CVE-2014-9634)