{"id":3362,"date":"2024-03-28T19:46:10","date_gmt":"2024-03-28T19:46:10","guid":{"rendered":"http:\/\/127.0.0.1\/wp-erp-1-12-9-inyeccion-de-sql-autenticada-gestor-de-contabilidad\/"},"modified":"2024-03-28T19:46:10","modified_gmt":"2024-03-28T19:46:10","slug":"wp-erp-1-12-9-inyeccion-de-sql-autenticada-gestor-de-contabilidad","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/wp-erp-1-12-9-inyeccion-de-sql-autenticada-gestor-de-contabilidad\/","title":{"rendered":"WP ERP <= 1.12.9 – Inyecci\u00f3n de SQL autenticada (Gestor de Contabilidad+)"},"content":{"rendered":"
<\/p>\n
La vulnerabilidad CVE-2024-0913 en el plugin WP ERP | Soluci\u00f3n completa de RRHH con reclutamiento y listados de trabajos | WooCommerce CRM y contabilidad para WordPress permite a atacantes autenticados realizar inyecciones de SQL basadas en tiempo a trav\u00e9s del endpoint de la API REST erp\/v1\/accounting\/v1\/transactions\/salidas en todas las versiones hasta, e incluyendo, 1.12.9. Esto […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[1073],"class_list":["post-3362","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-0913"],"yoast_head":"\n