{"id":3411,"date":"2024-04-01T21:45:12","date_gmt":"2024-04-01T21:45:12","guid":{"rendered":"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/"},"modified":"2024-04-01T21:45:12","modified_gmt":"2024-04-01T21:45:12","slug":"product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/","title":{"rendered":"Product Sort and Display for WooCommerce &lt;= 2.4.1 &#8211; Falta de Autorizaci\u00f3n"},"content":{"rendered":"<div>El plugin Product Sort and Display for WooCommerce para WordPress es vulnerable a la modificaci\u00f3n no autorizada de datos debido a la falta de una verificaci\u00f3n de capacidad en la funci\u00f3n psad_update_product_cat_custom_meta_ajax en todas las versiones hasta, e incluyendo, la 2.4.1. Esto permite a atacantes no autenticados ocultar categor\u00edas de productos.<\/div>\n<p><\/p>\n<div>Los usuarios afectados por esta vulnerabilidad pueden tomar medidas para mitigar el riesgo de posibles ataques. Una soluci\u00f3n temporal ser\u00eda desactivar el plugin afectado hasta que se lance una actualizaci\u00f3n que corrija este problema. Adem\u00e1s, se recomienda mantenerse atento a las actualizaciones de seguridad y parches proporcionados por el desarrollador del plugin.<\/div>\n<div>Es fundamental para los propietarios de sitios web estar al tanto de las vulnerabilidades en los plugins que utilizan y tomar medidas proactivas para proteger sus sitios contra posibles ataques. En este caso, la falta de una debida autorizaci\u00f3n en el plugin Product Sort and Display for WooCommerce puede ser explotada por atacantes, por lo que se recomienda seguir las recomendaciones mencionadas para garantizar la seguridad de su sitio web.<\/div>\n","protected":false},"excerpt":{"rendered":"<p>El plugin Product Sort and Display for WooCommerce para WordPress es vulnerable a la modificaci\u00f3n no autorizada de datos debido a la falta de una verificaci\u00f3n de capacidad en la funci\u00f3n psad_update_product_cat_custom_meta_ajax en todas las versiones hasta, e incluyendo, la 2.4.1. Esto permite a atacantes no autenticados ocultar categor\u00edas de productos. Los usuarios afectados por [&hellip;]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[1121],"class_list":["post-3411","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-1807"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v21.8 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Product Sort and Display for WooCommerce &lt;= 2.4.1 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Product Sort and Display for WooCommerce &lt;= 2.4.1 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es\" \/>\n<meta property=\"og:description\" content=\"El plugin Product Sort and Display for WooCommerce para WordPress es vulnerable a la modificaci\u00f3n no autorizada de datos debido a la falta de una verificaci\u00f3n de capacidad en la funci\u00f3n psad_update_product_cat_custom_meta_ajax en todas las versiones hasta, e incluyendo, la 2.4.1. Esto permite a atacantes no autenticados ocultar categor\u00edas de productos. Los usuarios afectados por [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/\" \/>\n<meta property=\"og:site_name\" content=\"SeguridadWordPress.es\" \/>\n<meta property=\"article:published_time\" content=\"2024-04-01T21:45:12+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/\",\"url\":\"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/\",\"name\":\"Product Sort and Display for WooCommerce &lt;= 2.4.1 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es\",\"isPartOf\":{\"@id\":\"http:\/\/127.0.0.1\/#website\"},\"datePublished\":\"2024-04-01T21:45:12+00:00\",\"dateModified\":\"2024-04-01T21:45:12+00:00\",\"author\":{\"@id\":\"\"},\"breadcrumb\":{\"@id\":\"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"http:\/\/127.0.0.1\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Product Sort and Display for WooCommerce &lt;= 2.4.1 &#8211; Falta de Autorizaci\u00f3n\"}]},{\"@type\":\"WebSite\",\"@id\":\"http:\/\/127.0.0.1\/#website\",\"url\":\"http:\/\/127.0.0.1\/\",\"name\":\"SeguridadWordPress.es\",\"description\":\"Recopilaci\u00f3n de vulnerabilidades WordPress.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"http:\/\/127.0.0.1\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Product Sort and Display for WooCommerce &lt;= 2.4.1 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/","og_locale":"en_US","og_type":"article","og_title":"Product Sort and Display for WooCommerce &lt;= 2.4.1 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es","og_description":"El plugin Product Sort and Display for WooCommerce para WordPress es vulnerable a la modificaci\u00f3n no autorizada de datos debido a la falta de una verificaci\u00f3n de capacidad en la funci\u00f3n psad_update_product_cat_custom_meta_ajax en todas las versiones hasta, e incluyendo, la 2.4.1. Esto permite a atacantes no autenticados ocultar categor\u00edas de productos. Los usuarios afectados por [&hellip;]","og_url":"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/","og_site_name":"SeguridadWordPress.es","article_published_time":"2024-04-01T21:45:12+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/","url":"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/","name":"Product Sort and Display for WooCommerce &lt;= 2.4.1 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es","isPartOf":{"@id":"http:\/\/127.0.0.1\/#website"},"datePublished":"2024-04-01T21:45:12+00:00","dateModified":"2024-04-01T21:45:12+00:00","author":{"@id":""},"breadcrumb":{"@id":"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/"]}]},{"@type":"BreadcrumbList","@id":"http:\/\/127.0.0.1\/product-sort-and-display-for-woocommerce-2-4-1-falta-de-autorizacion\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"http:\/\/127.0.0.1\/"},{"@type":"ListItem","position":2,"name":"Product Sort and Display for WooCommerce &lt;= 2.4.1 &#8211; Falta de Autorizaci\u00f3n"}]},{"@type":"WebSite","@id":"http:\/\/127.0.0.1\/#website","url":"http:\/\/127.0.0.1\/","name":"SeguridadWordPress.es","description":"Recopilaci\u00f3n de vulnerabilidades WordPress.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"http:\/\/127.0.0.1\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"}]}},"amp_enabled":true,"_links":{"self":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/3411"}],"collection":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/comments?post=3411"}],"version-history":[{"count":0,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/3411\/revisions"}],"wp:attachment":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/media?parent=3411"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/categories?post=3411"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/tags?post=3411"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}