by madhura railkar.
During the security testing it was observed that Vulnerable 3rd Party libraries/platforms used in moodle site. Attacker can use this framework vulnerability to perform XSS on the application and do malicious activities.
So security team recommended to Upgrade jQuery and Bootstrap version to latest stable version.
I am able to manage the upgrading of jQuery. but not getting any documentation for upgrading the bootstrap.
So I have sent the reply back to security team that it is not possible to upgrade bootstrap as it can affect the whole site functionality and can create conflicts.
But they want some valid document which can explain why it is not possible to do that.
So I am not sure whether we can able to achieve that or not.
So security team recommended to Upgrade jQuery and Bootstrap version to latest stable version.
I am able to manage the upgrading of jQuery. but not getting any documentation for upgrading the bootstrap.
So I have sent the reply back to security team that it is not possible to upgrade bootstrap as it can affect the whole site functionality and can create conflicts.
But they want some valid document which can explain why it is not possible to do that.
So I am not sure whether we can able to achieve that or not.