Skip to main content

Path Breadcrumbs

2 CVEs product

Monthly

CVE-2015-6754 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the administration interface in the Path Breadcrumbs module 7.x-3.x before 7.x-3.3 for Drupal allows remote authenticated users with the "Administer Path. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Path Breadcrumbs
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2015-3391 MEDIUM PATCH This Month

The Path Breadcrumbs module before 7.x-3.2 for Drupal allows remote attackers to bypass intended access restrictions and obtain sensitive node titles by reading a 403 Not Found page. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Path Breadcrumbs
NVD
CVSS 2.0
5.0
EPSS
0.3%
EPSS 0% CVSS 2.1
LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the administration interface in the Path Breadcrumbs module 7.x-3.x before 7.x-3.3 for Drupal allows remote authenticated users with the "Administer Path. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Path Breadcrumbs
NVD
EPSS 0% CVSS 5.0
MEDIUM PATCH This Month

The Path Breadcrumbs module before 7.x-3.2 for Drupal allows remote attackers to bypass intended access restrictions and obtain sensitive node titles by reading a 403 Not Found page. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Path Breadcrumbs
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy