VYPR

Breadcrumb Simple

by WordPress

CVEs (2)

  • CVE-2023-35092MedAug 30, 2023
    risk 0.38cvss 5.9epss 0.00

    Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Abhay Yadav Breadcrumb simple plugin <= 1.3 versions.

  • CVE-2022-2149MedJul 17, 2022
    risk 0.31cvss 4.8epss 0.00

    The Very Simple Breadcrumb WordPress plugin through 1.0 does not sanitise and escape its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.