JSON Data encoded for use in HTML was not safe to use in IE6/IE7, possible XSS attacks

PKSA-t4rs-j8m5-2fpy CVE-2015-3397

Affected package: yiisoft/yii2-bootstrap

Affected version: <2.0.4

Reported by:
FriendsOfPHP/security-advisories