{"id":3031,"date":"2024-02-28T15:45:14","date_gmt":"2024-02-28T15:45:14","guid":{"rendered":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/"},"modified":"2024-02-28T15:45:14","modified_gmt":"2024-02-28T15:45:14","slug":"vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/","title":{"rendered":"Vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks para WordPress"},"content":{"rendered":"
La vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates <= 4.5.1 afecta la seguridad de los sitios web de WordPress que utilizan este plugin.<\/div>\n

<\/p>\n

La falla de seguridad CVE-2024-1854, catalogada como ‘Validaci\u00f3n de entrada inadecuada’, permite que atacantes autenticados con acceso de colaborador o superior inyecten scripts web arbitrarios en las p\u00e1ginas generadas por el plugin. Esto podr\u00eda resultar en la ejecuci\u00f3n de scripts maliciosos cuando un usuario accede a una p\u00e1gina comprometida. Para mitigar este riesgo, se recomienda a los usuarios actualizar el plugin a la versi\u00f3n m\u00e1s reciente, en la que se han aplicado correcciones de seguridad.<\/div>\n
Mantener los plugins de WordPress actualizados es fundamental para proteger tu sitio web contra vulnerabilidades conocidas. Adem\u00e1s, es importante seguir buenas pr\u00e1cticas de seguridad, como limitar el acceso de los usuarios y validar cuidadosamente cualquier entrada de datos para prevenir ataques de Cross-Site Scripting y otras amenazas comunes en la web.<\/div>\n","protected":false},"excerpt":{"rendered":"

La vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates <= 4.5.1 afecta la seguridad de los sitios web de WordPress que utilizan este plugin. La falla de seguridad CVE-2024-1854, catalogada como ‘Validaci\u00f3n de entrada inadecuada’, permite que atacantes autenticados con acceso de colaborador o superior inyecten scripts […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[744],"class_list":["post-3031","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-1854"],"yoast_head":"\nVulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks para WordPress - SeguridadWordPress.es<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks para WordPress - SeguridadWordPress.es\" \/>\n<meta property=\"og:description\" content=\"La vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates <= 4.5.1 afecta la seguridad de los sitios web de WordPress que utilizan este plugin. La falla de seguridad CVE-2024-1854, catalogada como ‘Validaci\u00f3n de entrada inadecuada’, permite que atacantes autenticados con acceso de colaborador o superior inyecten scripts […]\" \/>\n<meta property=\"og:url\" content=\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/\" \/>\n<meta property=\"og:site_name\" content=\"SeguridadWordPress.es\" \/>\n<meta property=\"article:published_time\" content=\"2024-02-28T15:45:14+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/\",\"url\":\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/\",\"name\":\"Vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks para WordPress - SeguridadWordPress.es\",\"isPartOf\":{\"@id\":\"http:\/\/127.0.0.1\/#website\"},\"datePublished\":\"2024-02-28T15:45:14+00:00\",\"dateModified\":\"2024-02-28T15:45:14+00:00\",\"author\":{\"@id\":\"\"},\"breadcrumb\":{\"@id\":\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"http:\/\/127.0.0.1\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks para WordPress\"}]},{\"@type\":\"WebSite\",\"@id\":\"http:\/\/127.0.0.1\/#website\",\"url\":\"http:\/\/127.0.0.1\/\",\"name\":\"SeguridadWordPress.es\",\"description\":\"Recopilaci\u00f3n de vulnerabilidades WordPress.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"http:\/\/127.0.0.1\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks para WordPress - SeguridadWordPress.es","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/","og_locale":"en_US","og_type":"article","og_title":"Vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks para WordPress - SeguridadWordPress.es","og_description":"La vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates <= 4.5.1 afecta la seguridad de los sitios web de WordPress que utilizan este plugin. La falla de seguridad CVE-2024-1854, catalogada como ‘Validaci\u00f3n de entrada inadecuada’, permite que atacantes autenticados con acceso de colaborador o superior inyecten scripts […]","og_url":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/","og_site_name":"SeguridadWordPress.es","article_published_time":"2024-02-28T15:45:14+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/","url":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/","name":"Vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks para WordPress - SeguridadWordPress.es","isPartOf":{"@id":"http:\/\/127.0.0.1\/#website"},"datePublished":"2024-02-28T15:45:14+00:00","dateModified":"2024-02-28T15:45:14+00:00","author":{"@id":""},"breadcrumb":{"@id":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/"]}]},{"@type":"BreadcrumbList","@id":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-almacenado-en-essential-blocks-para-wordpress\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"http:\/\/127.0.0.1\/"},{"@type":"ListItem","position":2,"name":"Vulnerabilidad de Cross-Site Scripting almacenado en Essential Blocks para WordPress"}]},{"@type":"WebSite","@id":"http:\/\/127.0.0.1\/#website","url":"http:\/\/127.0.0.1\/","name":"SeguridadWordPress.es","description":"Recopilaci\u00f3n de vulnerabilidades WordPress.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"http:\/\/127.0.0.1\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"}]}},"amp_enabled":true,"_links":{"self":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/3031"}],"collection":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/comments?post=3031"}],"version-history":[{"count":0,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/3031\/revisions"}],"wp:attachment":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/media?parent=3031"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/categories?post=3031"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/tags?post=3031"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}