{"id":2725,"date":"2024-01-26T15:15:23","date_gmt":"2024-01-26T15:15:23","guid":{"rendered":"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/"},"modified":"2024-01-26T15:15:23","modified_gmt":"2024-01-26T15:15:23","slug":"pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/","title":{"rendered":"PDF Poster – Plugin PDF Embedder para WordPress <= 2.1.17 – Cross-Site Scripting Reflejada"},"content":{"rendered":"
El plugin PDF Poster – PDF Embedder para WordPress es vulnerable a Cross-Site Scripting Reflejada en versiones hasta, e incluyendo, la 2.1.17 debido a una sanitizaci\u00f3n insuficiente de la entrada y escapado de salida. Esto permite a atacantes no autenticados inyectar scripts web arbitrarios en p\u00e1ginas que se ejecutan si logran enga\u00f1ar con \u00e9xito a un usuario para que realice una acci\u00f3n como hacer clic en un enlace.<\/div>\n

<\/p>\n

La vulnerabilidad de Cross-Site Scripting Reflejada en el plugin PDF Poster – PDF Embedder para WordPress <= 2.1.17 permite a los atacantes aprovecharse de la falta de sanitizaci\u00f3n y escapado de salida de las entradas del usuario. Esto significa que pueden insertar c\u00f3digo malicioso en el campo de entrada y, cuando otro usuario vea la p\u00e1gina que contiene ese campo, el c\u00f3digo se ejecutar\u00e1 en su navegador. Esto puede llevar a la ejecuci\u00f3n de scripts no deseados o a redirigir a los usuarios a sitios web maliciosos.<\/p>\n

Para subsanar este problema, se recomienda a los usuarios actualizar el plugin PDF Poster – PDF Embedder a la versi\u00f3n m\u00e1s reciente disponible. Adem\u00e1s, es importante educar a los usuarios sobre los riesgos de hacer clic en enlaces desconocidos y recomendarles que no ejecuten ninguna acci\u00f3n en sitios web no confiables o sospechosos.<\/p><\/div>\n

La vulnerabilidad de Cross-Site Scripting Reflejada en el plugin PDF Poster – PDF Embedder para WordPress es un riesgo significativo para la seguridad de los sitios web. Es importante que los usuarios est\u00e9n al tanto de esta vulnerabilidad y tomen medidas para proteger sus instalaciones de WordPress aplicando las actualizaciones necesarias. Adem\u00e1s, se debe fomentar la conciencia sobre la seguridad en l\u00ednea y educar a los usuarios para que eviten hacer clic en enlaces desconocidos o sospechosos.<\/div>\n","protected":false},"excerpt":{"rendered":"

El plugin PDF Poster – PDF Embedder para WordPress es vulnerable a Cross-Site Scripting Reflejada en versiones hasta, e incluyendo, la 2.1.17 debido a una sanitizaci\u00f3n insuficiente de la entrada y escapado de salida. Esto permite a atacantes no autenticados inyectar scripts web arbitrarios en p\u00e1ginas que se ejecutan si logran enga\u00f1ar con \u00e9xito a […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[441],"class_list":["post-2725","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-23508"],"yoast_head":"\nPDF Poster - Plugin PDF Embedder para WordPress <= 2.1.17 - Cross-Site Scripting Reflejada - SeguridadWordPress.es<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"PDF Poster - Plugin PDF Embedder para WordPress <= 2.1.17 - Cross-Site Scripting Reflejada - SeguridadWordPress.es\" \/>\n<meta property=\"og:description\" content=\"El plugin PDF Poster – PDF Embedder para WordPress es vulnerable a Cross-Site Scripting Reflejada en versiones hasta, e incluyendo, la 2.1.17 debido a una sanitizaci\u00f3n insuficiente de la entrada y escapado de salida. Esto permite a atacantes no autenticados inyectar scripts web arbitrarios en p\u00e1ginas que se ejecutan si logran enga\u00f1ar con \u00e9xito a […]\" \/>\n<meta property=\"og:url\" content=\"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/\" \/>\n<meta property=\"og:site_name\" content=\"SeguridadWordPress.es\" \/>\n<meta property=\"article:published_time\" content=\"2024-01-26T15:15:23+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/\",\"url\":\"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/\",\"name\":\"PDF Poster - Plugin PDF Embedder para WordPress <= 2.1.17 - Cross-Site Scripting Reflejada - SeguridadWordPress.es\",\"isPartOf\":{\"@id\":\"http:\/\/127.0.0.1\/#website\"},\"datePublished\":\"2024-01-26T15:15:23+00:00\",\"dateModified\":\"2024-01-26T15:15:23+00:00\",\"author\":{\"@id\":\"\"},\"breadcrumb\":{\"@id\":\"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"http:\/\/127.0.0.1\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"PDF Poster – Plugin PDF Embedder para WordPress <= 2.1.17 – Cross-Site Scripting Reflejada\"}]},{\"@type\":\"WebSite\",\"@id\":\"http:\/\/127.0.0.1\/#website\",\"url\":\"http:\/\/127.0.0.1\/\",\"name\":\"SeguridadWordPress.es\",\"description\":\"Recopilaci\u00f3n de vulnerabilidades WordPress.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"http:\/\/127.0.0.1\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"PDF Poster - Plugin PDF Embedder para WordPress <= 2.1.17 - Cross-Site Scripting Reflejada - SeguridadWordPress.es","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/","og_locale":"en_US","og_type":"article","og_title":"PDF Poster - Plugin PDF Embedder para WordPress <= 2.1.17 - Cross-Site Scripting Reflejada - SeguridadWordPress.es","og_description":"El plugin PDF Poster – PDF Embedder para WordPress es vulnerable a Cross-Site Scripting Reflejada en versiones hasta, e incluyendo, la 2.1.17 debido a una sanitizaci\u00f3n insuficiente de la entrada y escapado de salida. Esto permite a atacantes no autenticados inyectar scripts web arbitrarios en p\u00e1ginas que se ejecutan si logran enga\u00f1ar con \u00e9xito a […]","og_url":"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/","og_site_name":"SeguridadWordPress.es","article_published_time":"2024-01-26T15:15:23+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/","url":"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/","name":"PDF Poster - Plugin PDF Embedder para WordPress <= 2.1.17 - Cross-Site Scripting Reflejada - SeguridadWordPress.es","isPartOf":{"@id":"http:\/\/127.0.0.1\/#website"},"datePublished":"2024-01-26T15:15:23+00:00","dateModified":"2024-01-26T15:15:23+00:00","author":{"@id":""},"breadcrumb":{"@id":"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/"]}]},{"@type":"BreadcrumbList","@id":"http:\/\/127.0.0.1\/pdf-poster-plugin-pdf-embedder-para-wordpress-2-1-17-cross-site-scripting-reflejada\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"http:\/\/127.0.0.1\/"},{"@type":"ListItem","position":2,"name":"PDF Poster – Plugin PDF Embedder para WordPress <= 2.1.17 – Cross-Site Scripting Reflejada"}]},{"@type":"WebSite","@id":"http:\/\/127.0.0.1\/#website","url":"http:\/\/127.0.0.1\/","name":"SeguridadWordPress.es","description":"Recopilaci\u00f3n de vulnerabilidades WordPress.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"http:\/\/127.0.0.1\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"}]}},"amp_enabled":true,"_links":{"self":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/2725"}],"collection":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/comments?post=2725"}],"version-history":[{"count":0,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/2725\/revisions"}],"wp:attachment":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/media?parent=2725"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/categories?post=2725"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/tags?post=2725"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}