Description
WordPress Plugin Breadcrumb NavXT is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin Breadcrumb NavXT version 6.1.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 6.2.0 or latest
References
http://www.waraxe.us/advisory-108.html
https://plugins.svn.wordpress.org/breadcrumb-navxt/trunk/readme.txt
Related Vulnerabilities
WP Githuber MD Arbitrary File Upload (1.4.1)
Captain Slider Cross-Site Scripting (1.0.6)
TAuto Poster includes Backdoor [Only if downloaded via the vendor website] (1.4.5)
Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2016-4068)
Django Improper Certificate Validation Vulnerability (CVE-2020-13254)