{"id":3427,"date":"2024-04-03T17:45:08","date_gmt":"2024-04-03T17:45:08","guid":{"rendered":"http:\/\/127.0.0.1\/beaver-themer-1-4-9-divulgacion-de-informacion-sensible-contributor-autenticada-a-traves-de-shortcode\/"},"modified":"2024-04-03T17:45:08","modified_gmt":"2024-04-03T17:45:08","slug":"beaver-themer-1-4-9-divulgacion-de-informacion-sensible-contributor-autenticada-a-traves-de-shortcode","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/beaver-themer-1-4-9-divulgacion-de-informacion-sensible-contributor-autenticada-a-traves-de-shortcode\/","title":{"rendered":"Beaver Themer <= 1.4.9 – Divulgaci\u00f3n de informaci\u00f3n sensible (Contributor+) autenticada a trav\u00e9s de shortcode"},"content":{"rendered":"
<\/p>\n
El complemento Beaver Themer para WordPress es vulnerable a la divulgaci\u00f3n de informaci\u00f3n sensible en todas las versiones hasta, e incluyendo, la 1.4.9 a trav\u00e9s del shortcode ‘wpbb’. Esto permite a atacantes autenticados, con acceso de contribuidor o superior, extraer datos sensibles incluyendo valores arbitrarios de user_meta. Los usuarios afectados por esta vulnerabilidad deben actualizar […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[1137],"class_list":["post-3427","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2023-6695"],"yoast_head":"\n