{"id":2757,"date":"2024-01-31T20:15:18","date_gmt":"2024-01-31T20:15:18","guid":{"rendered":"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/"},"modified":"2024-01-31T20:15:18","modified_gmt":"2024-01-31T20:15:18","slug":"active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/","title":{"rendered":"Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce <= 1.0.6.1 – Cross-Site Request Forgery"},"content":{"rendered":"
El complemento Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce para WordPress es vulnerable a Cross-Site Request Forgery (CSRF) en todas las versiones hasta, e incluyendo, 1.0.6.1. Esto se debe a la falta de validaci\u00f3n de nonce o a una validaci\u00f3n incorrecta en varias funciones correspondientes a acciones AJAX. Esto hace posible que atacantes no autenticados invoquen esas funciones mediante una solicitud falsificada, siempre y cuando puedan enga\u00f1ar a un administrador del sitio para que realice una acci\u00f3n, como hacer clic en un enlace.<\/div>\n

<\/p>\n

El Cross-Site Request Forgery es una vulnerabilidad de seguridad que permite a los atacantes realizar acciones no autorizadas en nombre de un usuario autenticado. En el caso del complemento Active Products Tables for WooCommerce, esta vulnerabilidad permite que atacantes no autenticados realicen acciones en la tienda WooCommerce de un sitio web comprometido.<\/div>\n
La vulnerabilidad de Cross-Site Request Forgery en el complemento Active Products Tables for WooCommerce puede comprometer la seguridad de una tienda WooCommerce en WordPress. Es importante tener en cuenta las medidas de seguridad mencionadas anteriormente para protegerse contra este tipo de ataques. Mantener el complemento actualizado y estar alerta frente a posibles amenazas ayudar\u00e1 a reducir el riesgo de un ataque exitoso.<\/div>\n","protected":false},"excerpt":{"rendered":"

El complemento Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce para WordPress es vulnerable a Cross-Site Request Forgery (CSRF) en todas las versiones hasta, e incluyendo, 1.0.6.1. Esto se debe a la falta de validaci\u00f3n de nonce o a una validaci\u00f3n incorrecta en varias funciones correspondientes a acciones AJAX. Esto […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[473],"class_list":["post-2757","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-0796"],"yoast_head":"\nActive Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce <= 1.0.6.1 - Cross-Site Request Forgery - SeguridadWordPress.es<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce <= 1.0.6.1 - Cross-Site Request Forgery - SeguridadWordPress.es\" \/>\n<meta property=\"og:description\" content=\"El complemento Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce para WordPress es vulnerable a Cross-Site Request Forgery (CSRF) en todas las versiones hasta, e incluyendo, 1.0.6.1. Esto se debe a la falta de validaci\u00f3n de nonce o a una validaci\u00f3n incorrecta en varias funciones correspondientes a acciones AJAX. Esto […]\" \/>\n<meta property=\"og:url\" content=\"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/\" \/>\n<meta property=\"og:site_name\" content=\"SeguridadWordPress.es\" \/>\n<meta property=\"article:published_time\" content=\"2024-01-31T20:15:18+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/\",\"url\":\"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/\",\"name\":\"Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce <= 1.0.6.1 - Cross-Site Request Forgery - SeguridadWordPress.es\",\"isPartOf\":{\"@id\":\"http:\/\/127.0.0.1\/#website\"},\"datePublished\":\"2024-01-31T20:15:18+00:00\",\"dateModified\":\"2024-01-31T20:15:18+00:00\",\"author\":{\"@id\":\"\"},\"breadcrumb\":{\"@id\":\"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"http:\/\/127.0.0.1\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce <= 1.0.6.1 – Cross-Site Request Forgery\"}]},{\"@type\":\"WebSite\",\"@id\":\"http:\/\/127.0.0.1\/#website\",\"url\":\"http:\/\/127.0.0.1\/\",\"name\":\"SeguridadWordPress.es\",\"description\":\"Recopilaci\u00f3n de vulnerabilidades WordPress.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"http:\/\/127.0.0.1\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce <= 1.0.6.1 - Cross-Site Request Forgery - SeguridadWordPress.es","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/","og_locale":"en_US","og_type":"article","og_title":"Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce <= 1.0.6.1 - Cross-Site Request Forgery - SeguridadWordPress.es","og_description":"El complemento Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce para WordPress es vulnerable a Cross-Site Request Forgery (CSRF) en todas las versiones hasta, e incluyendo, 1.0.6.1. Esto se debe a la falta de validaci\u00f3n de nonce o a una validaci\u00f3n incorrecta en varias funciones correspondientes a acciones AJAX. Esto […]","og_url":"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/","og_site_name":"SeguridadWordPress.es","article_published_time":"2024-01-31T20:15:18+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/","url":"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/","name":"Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce <= 1.0.6.1 - Cross-Site Request Forgery - SeguridadWordPress.es","isPartOf":{"@id":"http:\/\/127.0.0.1\/#website"},"datePublished":"2024-01-31T20:15:18+00:00","dateModified":"2024-01-31T20:15:18+00:00","author":{"@id":""},"breadcrumb":{"@id":"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/"]}]},{"@type":"BreadcrumbList","@id":"http:\/\/127.0.0.1\/active-products-tables-for-woocommerce-tablas-de-productos-profesionales-para-la-tienda-woocommerce-1-0-6-1-cross-site-request-forgery\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"http:\/\/127.0.0.1\/"},{"@type":"ListItem","position":2,"name":"Active Products Tables for WooCommerce. Tablas de productos profesionales para la tienda WooCommerce <= 1.0.6.1 – Cross-Site Request Forgery"}]},{"@type":"WebSite","@id":"http:\/\/127.0.0.1\/#website","url":"http:\/\/127.0.0.1\/","name":"SeguridadWordPress.es","description":"Recopilaci\u00f3n de vulnerabilidades WordPress.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"http:\/\/127.0.0.1\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"}]}},"amp_enabled":true,"_links":{"self":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/2757"}],"collection":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/comments?post=2757"}],"version-history":[{"count":0,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/2757\/revisions"}],"wp:attachment":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/media?parent=2757"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/categories?post=2757"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/tags?post=2757"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}