CVE-2018-20676

CVE-2018-20676

In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.

Source: CVE-2018-20676