CVE-2014-4505

Drupal Easy Breadcrumb <7.x-2.10 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in the Easy Breadcrumb module 7.x-2.x before 7.x-2.10 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (4)

[Third Party Advisory] http://secunia.com/advisories/59379

[Patch] https://www.drupal.org/node/2286121

[Patch, Vendor Advisory] https://www.drupal.org/node/2288353

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/68106

Scores

EPSS 0.0029

EPSS Percentile 51.7%

Details

CWE

CWE-79

Status published

Products (11)

roger_padilla_camacho/easy_breadcrumb

... and 1 more

Published Jun 20, 2014

Tracked Since Feb 18, 2026