{"id":3135,"date":"2024-03-07T21:45:18","date_gmt":"2024-03-07T21:45:18","guid":{"rendered":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-premium-addons-pro-2-9-12\/"},"modified":"2024-03-07T21:45:18","modified_gmt":"2024-03-07T21:45:18","slug":"vulnerabilidad-de-cross-site-scripting-en-premium-addons-pro-2-9-12","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-premium-addons-pro-2-9-12\/","title":{"rendered":"Vulnerabilidad de Cross-Site Scripting en Premium Addons PRO <= 2.9.12"},"content":{"rendered":"
<\/p>\n
La vulnerabilidad CVE-2024-2000 en el plugin Premium Addons PRO para WordPress permite a atacantes almacenar y ejecutar scripts maliciosos en p\u00e1ginas web a trav\u00e9s del par\u00e1metro ‘navigation_dots’ del widget Multi Scroll, poniendo en riesgo a los usuarios con nivel de acceso de contribuidor o superior. La falta de sanitizaci\u00f3n de entradas y escape de salida […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[848],"class_list":["post-3135","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-2000"],"yoast_head":"\n