CVE-2025-1647

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-1647

Severity

Unknown

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Bootstrap allows Cross-Site Scripting (XSS).This issue affects Bootstrap: from 3.4.1 before 4.0.0.

References

https://images.chainguard.dev/security/CGA-8x54-xgp7-85mr
https://github.com/advisories/GHSA-q58r-hwc8-rm9j
https://images.chainguard.dev/security/CGA-whrc-rcfj-6fxc
https://www.herodevs.com/vulnerability-directory/cve-2025-1647
https://lists.debian.org/debian-lts-announce/2025/06/msg00001.html
https://security-tracker.debian.org/tracker/CVE-2025-1647

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Private Policy

Product

Chainguard Containers Chainguard Libraries Chainguard VMs Integrations Pricing

Solutions

FedRAMP PCI DSS Golden Images CVE Remediation Public Sector

Customers

Customer Stories Chainguard Reviews

Resources

Events & Webinars Chainguard Courses Documentation Trust Center

Company

About Us Blog Partners Newsroom Careers Legal