Fixes #451

eoftedal · eoftedal · commit 39c657ce1b99 · 2024-08-15T20:23:08.000+02:00
diff --git a/repository/jsrepository-master.json b/repository/jsrepository-master.json
@@ -3686,7 +3686,7 @@
         "ranges": [
           {
             "atOrAbove": "4.0.0",
-            "below": "999"
+            "below": "4.6.3"
           }
         ],
         "summary": "Bootstrap Cross-Site Scripting (XSS) vulnerability",
@@ -3708,7 +3708,7 @@
         "ranges": [
           {
             "atOrAbove": "2.0.0",
-            "below": "999"
+            "below": "3.4.2"
           }
         ],
         "summary": "Bootstrap Cross-Site Scripting (XSS) vulnerability",
diff --git a/repository/jsrepository-v2.json b/repository/jsrepository-v2.json
@@ -5192,6 +5192,29 @@
           "https://github.com/twbs/bootstrap/issues/28236"
         ]
       },
+      {
+        "atOrAbove": "2.0.0",
+        "below": "3.4.2",
+        "cwe": [
+          "CWE-79"
+        ],
+        "severity": "medium",
+        "identifiers": {
+          "summary": "Bootstrap Cross-Site Scripting (XSS) vulnerability",
+          "CVE": [
+            "CVE-2024-6484"
+          ],
+          "githubID": "GHSA-9mvj-f7w8-pvh2"
+        },
+        "info": [
+          "https://github.com/advisories/GHSA-9mvj-f7w8-pvh2",
+          "https://nvd.nist.gov/vuln/detail/CVE-2024-6484",
+          "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap-sass/CVE-2024-6484.yml",
+          "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap/CVE-2024-6484.yml",
+          "https://github.com/twbs/bootstrap",
+          "https://www.herodevs.com/vulnerability-directory/cve-2024-6484"
+        ]
+      },
       {
         "below": "3.999.999",
         "severity": "low",
@@ -5302,32 +5325,9 @@
           "https://github.com/twbs/bootstrap/issues/28236"
         ]
       },
-      {
-        "atOrAbove": "2.0.0",
-        "below": "999",
-        "cwe": [
-          "CWE-79"
-        ],
-        "severity": "medium",
-        "identifiers": {
-          "summary": "Bootstrap Cross-Site Scripting (XSS) vulnerability",
-          "CVE": [
-            "CVE-2024-6484"
-          ],
-          "githubID": "GHSA-9mvj-f7w8-pvh2"
-        },
-        "info": [
-          "https://github.com/advisories/GHSA-9mvj-f7w8-pvh2",
-          "https://nvd.nist.gov/vuln/detail/CVE-2024-6484",
-          "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap-sass/CVE-2024-6484.yml",
-          "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap/CVE-2024-6484.yml",
-          "https://github.com/twbs/bootstrap",
-          "https://www.herodevs.com/vulnerability-directory/cve-2024-6484"
-        ]
-      },
       {
         "atOrAbove": "4.0.0",
-        "below": "999",
+        "below": "4.6.3",
         "cwe": [
           "CWE-79"
         ],
diff --git a/repository/jsrepository-v3.json b/repository/jsrepository-v3.json
@@ -5193,6 +5193,29 @@
             "https://github.com/twbs/bootstrap/issues/28236"
           ]
         },
+        {
+          "atOrAbove": "2.0.0",
+          "below": "3.4.2",
+          "cwe": [
+            "CWE-79"
+          ],
+          "severity": "medium",
+          "identifiers": {
+            "summary": "Bootstrap Cross-Site Scripting (XSS) vulnerability",
+            "CVE": [
+              "CVE-2024-6484"
+            ],
+            "githubID": "GHSA-9mvj-f7w8-pvh2"
+          },
+          "info": [
+            "https://github.com/advisories/GHSA-9mvj-f7w8-pvh2",
+            "https://nvd.nist.gov/vuln/detail/CVE-2024-6484",
+            "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap-sass/CVE-2024-6484.yml",
+            "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap/CVE-2024-6484.yml",
+            "https://github.com/twbs/bootstrap",
+            "https://www.herodevs.com/vulnerability-directory/cve-2024-6484"
+          ]
+        },
         {
           "below": "3.999.999",
           "severity": "low",
@@ -5303,32 +5326,9 @@
             "https://github.com/twbs/bootstrap/issues/28236"
           ]
         },
-        {
-          "atOrAbove": "2.0.0",
-          "below": "999",
-          "cwe": [
-            "CWE-79"
-          ],
-          "severity": "medium",
-          "identifiers": {
-            "summary": "Bootstrap Cross-Site Scripting (XSS) vulnerability",
-            "CVE": [
-              "CVE-2024-6484"
-            ],
-            "githubID": "GHSA-9mvj-f7w8-pvh2"
-          },
-          "info": [
-            "https://github.com/advisories/GHSA-9mvj-f7w8-pvh2",
-            "https://nvd.nist.gov/vuln/detail/CVE-2024-6484",
-            "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap-sass/CVE-2024-6484.yml",
-            "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap/CVE-2024-6484.yml",
-            "https://github.com/twbs/bootstrap",
-            "https://www.herodevs.com/vulnerability-directory/cve-2024-6484"
-          ]
-        },
         {
           "atOrAbove": "4.0.0",
-          "below": "999",
+          "below": "4.6.3",
           "cwe": [
             "CWE-79"
           ],
diff --git a/repository/jsrepository.json b/repository/jsrepository.json
@@ -5140,6 +5140,29 @@
           "https://github.com/twbs/bootstrap/issues/28236"
         ]
       },
+      {
+        "atOrAbove": "2.0.0",
+        "below": "3.4.2",
+        "cwe": [
+          "CWE-79"
+        ],
+        "severity": "medium",
+        "identifiers": {
+          "summary": "Bootstrap Cross-Site Scripting (XSS) vulnerability",
+          "CVE": [
+            "CVE-2024-6484"
+          ],
+          "githubID": "GHSA-9mvj-f7w8-pvh2"
+        },
+        "info": [
+          "https://github.com/advisories/GHSA-9mvj-f7w8-pvh2",
+          "https://nvd.nist.gov/vuln/detail/CVE-2024-6484",
+          "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap-sass/CVE-2024-6484.yml",
+          "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap/CVE-2024-6484.yml",
+          "https://github.com/twbs/bootstrap",
+          "https://www.herodevs.com/vulnerability-directory/cve-2024-6484"
+        ]
+      },
       {
         "below": "3.999.999",
         "severity": "low",
@@ -5250,32 +5273,9 @@
           "https://github.com/twbs/bootstrap/issues/28236"
         ]
       },
-      {
-        "atOrAbove": "2.0.0",
-        "below": "999",
-        "cwe": [
-          "CWE-79"
-        ],
-        "severity": "medium",
-        "identifiers": {
-          "summary": "Bootstrap Cross-Site Scripting (XSS) vulnerability",
-          "CVE": [
-            "CVE-2024-6484"
-          ],
-          "githubID": "GHSA-9mvj-f7w8-pvh2"
-        },
-        "info": [
-          "https://github.com/advisories/GHSA-9mvj-f7w8-pvh2",
-          "https://nvd.nist.gov/vuln/detail/CVE-2024-6484",
-          "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap-sass/CVE-2024-6484.yml",
-          "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap/CVE-2024-6484.yml",
-          "https://github.com/twbs/bootstrap",
-          "https://www.herodevs.com/vulnerability-directory/cve-2024-6484"
-        ]
-      },
       {
         "atOrAbove": "4.0.0",
-        "below": "999",
+        "below": "4.6.3",
         "cwe": [
           "CWE-79"
         ],

Original file line number	Diff line number	Diff line change
`@@ -3686,7 +3686,7 @@`
`3686`	`3686`	`"ranges": [`
`3687`	`3687`	`{`
`3688`	`3688`	`"atOrAbove": "4.0.0",`
`3689`		`- "below": "999"`
	`3689`	`+ "below": "4.6.3"`
`3690`	`3690`	`}`
`3691`	`3691`	`],`
`3692`	`3692`	`"summary": "Bootstrap Cross-Site Scripting (XSS) vulnerability",`
`@@ -3708,7 +3708,7 @@`
`3708`	`3708`	`"ranges": [`
`3709`	`3709`	`{`
`3710`	`3710`	`"atOrAbove": "2.0.0",`
`3711`		`- "below": "999"`
	`3711`	`+ "below": "3.4.2"`
`3712`	`3712`	`}`
`3713`	`3713`	`],`
`3714`	`3714`	`"summary": "Bootstrap Cross-Site Scripting (XSS) vulnerability",`