{"id":2775,"date":"2024-02-02T17:16:11","date_gmt":"2024-02-02T17:16:11","guid":{"rendered":"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/"},"modified":"2024-02-02T17:16:11","modified_gmt":"2024-02-02T17:16:11","slug":"woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/","title":{"rendered":"WooCommerce Conversion Tracking <= 2.0.11 – Autorizaci\u00f3n faltante a trav\u00e9s de wcct_install_happy_addons"},"content":{"rendered":"
El complemento WooCommerce Conversion Tracking para WordPress presenta una vulnerabilidad de modificaci\u00f3n no autorizada de datos debido a la falta de una verificaci\u00f3n de capacidad en la funci\u00f3n ‘wcct_install_happy_addons’ en versiones hasta y incluyendo la 2.0.11. Esto permite a atacantes autenticados, con acceso de suscriptor y superior, instalar el complemento Happy Elementor Addons.<\/div>\n

<\/p>\n

La vulnerabilidad de autorizaci\u00f3n faltante en el complemento WooCommerce Conversion Tracking permite a atacantes autenticados de nivel suscriptor y superior, modificar datos sin autorizaci\u00f3n. Esto se debe a la falta de una verificaci\u00f3n de capacidad en la funci\u00f3n ‘wcct_install_happy_addons’. Por lo tanto, los atacantes pueden aprovechar esta debilidad para instalar el complemento Happy Elementor Addons de forma no autorizada.<\/p>\n

Para mitigar este problema, se recomienda actualizar a la \u00faltima versi\u00f3n del complemento WooCommerce Conversion Tracking lo antes posible. Adem\u00e1s, se debe restringir el acceso de suscriptores y roles superiores a la instalaci\u00f3n de complementos para prevenir ataques similares en el futuro.<\/p><\/div>\n

La falta de autorizaci\u00f3n en el complemento WooCommerce Conversion Tracking puede permitir la instalaci\u00f3n no autorizada del complemento Happy Elementor Addons. Para garantizar la seguridad de la aplicaci\u00f3n WordPress, es crucial mantener el complemento actualizado y limitar los privilegios de los usuarios para evitar el uso malintencionado de funciones y la modificaci\u00f3n no autorizada de datos.<\/div>\n","protected":false},"excerpt":{"rendered":"

El complemento WooCommerce Conversion Tracking para WordPress presenta una vulnerabilidad de modificaci\u00f3n no autorizada de datos debido a la falta de una verificaci\u00f3n de capacidad en la funci\u00f3n ‘wcct_install_happy_addons’ en versiones hasta y incluyendo la 2.0.11. Esto permite a atacantes autenticados, con acceso de suscriptor y superior, instalar el complemento Happy Elementor Addons. La vulnerabilidad […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[490],"class_list":["post-2775","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-24711"],"yoast_head":"\nWooCommerce Conversion Tracking <= 2.0.11 - Autorizaci\u00f3n faltante a trav\u00e9s de wcct_install_happy_addons - SeguridadWordPress.es<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"WooCommerce Conversion Tracking <= 2.0.11 - Autorizaci\u00f3n faltante a trav\u00e9s de wcct_install_happy_addons - SeguridadWordPress.es\" \/>\n<meta property=\"og:description\" content=\"El complemento WooCommerce Conversion Tracking para WordPress presenta una vulnerabilidad de modificaci\u00f3n no autorizada de datos debido a la falta de una verificaci\u00f3n de capacidad en la funci\u00f3n ‘wcct_install_happy_addons’ en versiones hasta y incluyendo la 2.0.11. Esto permite a atacantes autenticados, con acceso de suscriptor y superior, instalar el complemento Happy Elementor Addons. La vulnerabilidad […]\" \/>\n<meta property=\"og:url\" content=\"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/\" \/>\n<meta property=\"og:site_name\" content=\"SeguridadWordPress.es\" \/>\n<meta property=\"article:published_time\" content=\"2024-02-02T17:16:11+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/\",\"url\":\"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/\",\"name\":\"WooCommerce Conversion Tracking <= 2.0.11 - Autorizaci\u00f3n faltante a trav\u00e9s de wcct_install_happy_addons - SeguridadWordPress.es\",\"isPartOf\":{\"@id\":\"http:\/\/127.0.0.1\/#website\"},\"datePublished\":\"2024-02-02T17:16:11+00:00\",\"dateModified\":\"2024-02-02T17:16:11+00:00\",\"author\":{\"@id\":\"\"},\"breadcrumb\":{\"@id\":\"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"http:\/\/127.0.0.1\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"WooCommerce Conversion Tracking <= 2.0.11 – Autorizaci\u00f3n faltante a trav\u00e9s de wcct_install_happy_addons\"}]},{\"@type\":\"WebSite\",\"@id\":\"http:\/\/127.0.0.1\/#website\",\"url\":\"http:\/\/127.0.0.1\/\",\"name\":\"SeguridadWordPress.es\",\"description\":\"Recopilaci\u00f3n de vulnerabilidades WordPress.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"http:\/\/127.0.0.1\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"WooCommerce Conversion Tracking <= 2.0.11 - Autorizaci\u00f3n faltante a trav\u00e9s de wcct_install_happy_addons - SeguridadWordPress.es","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/","og_locale":"en_US","og_type":"article","og_title":"WooCommerce Conversion Tracking <= 2.0.11 - Autorizaci\u00f3n faltante a trav\u00e9s de wcct_install_happy_addons - SeguridadWordPress.es","og_description":"El complemento WooCommerce Conversion Tracking para WordPress presenta una vulnerabilidad de modificaci\u00f3n no autorizada de datos debido a la falta de una verificaci\u00f3n de capacidad en la funci\u00f3n ‘wcct_install_happy_addons’ en versiones hasta y incluyendo la 2.0.11. Esto permite a atacantes autenticados, con acceso de suscriptor y superior, instalar el complemento Happy Elementor Addons. La vulnerabilidad […]","og_url":"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/","og_site_name":"SeguridadWordPress.es","article_published_time":"2024-02-02T17:16:11+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/","url":"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/","name":"WooCommerce Conversion Tracking <= 2.0.11 - Autorizaci\u00f3n faltante a trav\u00e9s de wcct_install_happy_addons - SeguridadWordPress.es","isPartOf":{"@id":"http:\/\/127.0.0.1\/#website"},"datePublished":"2024-02-02T17:16:11+00:00","dateModified":"2024-02-02T17:16:11+00:00","author":{"@id":""},"breadcrumb":{"@id":"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/"]}]},{"@type":"BreadcrumbList","@id":"http:\/\/127.0.0.1\/woocommerce-conversion-tracking-2-0-11-autorizacion-faltante-a-traves-de-wcct_install_happy_addons\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"http:\/\/127.0.0.1\/"},{"@type":"ListItem","position":2,"name":"WooCommerce Conversion Tracking <= 2.0.11 – Autorizaci\u00f3n faltante a trav\u00e9s de wcct_install_happy_addons"}]},{"@type":"WebSite","@id":"http:\/\/127.0.0.1\/#website","url":"http:\/\/127.0.0.1\/","name":"SeguridadWordPress.es","description":"Recopilaci\u00f3n de vulnerabilidades WordPress.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"http:\/\/127.0.0.1\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"}]}},"amp_enabled":true,"_links":{"self":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/2775"}],"collection":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/comments?post=2775"}],"version-history":[{"count":0,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/2775\/revisions"}],"wp:attachment":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/media?parent=2775"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/categories?post=2775"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/tags?post=2775"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}