CVE-2015-6754

Name of the Vulnerable Software and Affected Versions Path Breadcrumbs module versions 7.x-3.x before 7.x-3.3

Description A cross-site scripting (XSS) issue exists in the administration interface of the Path Breadcrumbs module for Drupal, allowing remote authenticated users with the "Administer Path Breadcrumbs" permission to inject arbitrary web script or HTML.

Recommendations For Path Breadcrumbs module versions 7.x-3.x before 7.x-3.3, update to version 7.x-3.3 or later to resolve the issue.