WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions of WordPress prior to WP Meta SEO plugin 4.4.7, which stems from the fact that breadcrumb delimiters are not cleaned or escaped before being output to a page. The vulnerability can be exploited to inject arbitrary javascript into the page.