VYPR

Rdfa Breadcrumb

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-50020MedJun 20, 2025
    risk 0.38cvss 5.9epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nitin Yawalkar RDFa Breadcrumb rdfa-breadcrumb allows Stored XSS.This issue affects RDFa Breadcrumb: from n/a through <= 2.3.

  • CVE-2022-4836MedFeb 6, 2023
    risk 0.35cvss 5.4epss 0.01

    The Breadcrumb WordPress plugin before 1.5.33 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used…