{"id":3477,"date":"2024-04-09T16:45:17","date_gmt":"2024-04-09T16:45:17","guid":{"rendered":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-bold-page-builder-4-8-8-a-traves-del-elemento-price-list-con-autenticacion-contribuidor\/"},"modified":"2024-04-09T16:45:17","modified_gmt":"2024-04-09T16:45:17","slug":"vulnerabilidad-de-cross-site-scripting-en-bold-page-builder-4-8-8-a-traves-del-elemento-price-list-con-autenticacion-contribuidor","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-bold-page-builder-4-8-8-a-traves-del-elemento-price-list-con-autenticacion-contribuidor\/","title":{"rendered":"Vulnerabilidad de Cross-Site Scripting en Bold Page Builder <= 4.8.8 a trav\u00e9s del elemento 'Price List' con autenticaci\u00f3n (Contribuidor+)"},"content":{"rendered":"
<\/p>\n
La vulnerabilidad CVE-2024-2735 en el plugin Bold Page Builder para WordPress permite a atacantes autenticados con nivel de acceso de contribuidor o superior, inyectar scripts web arbitrarios en p\u00e1ginas mediante el elemento ‘Price List’. Esto podr\u00eda comprometer la seguridad de los usuarios al ejecutar scripts maliciosos en las p\u00e1ginas afectadas. La falta de sanitizaci\u00f3n de […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[1187],"class_list":["post-3477","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-2735"],"yoast_head":"\n