CVE-2025-1647

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-1647

Severity

Unknown

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Bootstrap allows Cross-Site Scripting (XSS).This issue affects Bootstrap: from 3.4.1 before 4.0.0.

References

https://images.chainguard.dev/security/CGA-8x54-xgp7-85mr
https://github.com/advisories/GHSA-q58r-hwc8-rm9j
https://images.chainguard.dev/security/CGA-whrc-rcfj-6fxc
https://www.herodevs.com/vulnerability-directory/cve-2025-1647
https://lists.debian.org/debian-lts-announce/2025/06/msg00001.html
https://security-tracker.debian.org/tracker/CVE-2025-1647

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

The trusted source for open source

Talk to an expert

Privacy

Terms

Product

Chainguard Containers Chainguard Libraries Chainguard VMs Integrations Pricing

Solutions

FedRAMP PCI DSS Golden Images CVE Remediation Public Sector

Customers

Customer Stories Chainguard Reviews

Resources

Events & Webinars Chainguard Courses Documentation Trust Center

Company

About Us Blog Partners Newsroom Careers Legal