{"id":3491,"date":"2024-04-10T21:45:14","date_gmt":"2024-04-10T21:45:14","guid":{"rendered":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/"},"modified":"2024-04-10T21:45:14","modified_gmt":"2024-04-10T21:45:14","slug":"vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/","title":{"rendered":"Vulnerabilidad de Cross-Site Scripting en Otter Blocks para Gutenberg Editor"},"content":{"rendered":"<div>La vulnerabilidad CVE-2024-3343 en el plugin Otter Blocks para Gutenberg Editor permite a atacantes autenticados realizar Cross-Site Scripting almacenado a trav\u00e9s de los atributos de los bloques del plugin.<\/div>\n<p><\/p>\n<div>El plugin Otter Blocks &#8211; Gutenberg Blocks, Page Builder for Gutenberg Editor &amp; FSE en versiones hasta la 2.6. As\u00ed que se recomienda a los usuarios actualizar su plugin Otter Blocks a la \u00faltima versi\u00f3n disponible, en la cual se han implementado correcciones de seguridad para mitigar este tipo de vulnerabilidades. Adem\u00e1s, se sugiere a los administradores de WordPress establecer pol\u00edticas estrictas de roles y permisos de usuario para limitar el acceso de los contribuyentes y superiores, reduciendo as\u00ed el riesgo de ataques de este tipo en el futuro.<\/div>\n<div>Es vital mantener actualizados todos los plugins y temas de WordPress, as\u00ed como tambi\u00e9n adoptar pr\u00e1cticas seguras en el manejo de roles y permisos de usuario. Ante la presencia de vulnerabilidades como en plugins populares como Otter Blocks, la pronta aplicaci\u00f3n de parches de seguridad es fundamental para proteger la integridad de los sitios web.<\/div>\n","protected":false},"excerpt":{"rendered":"<p>La vulnerabilidad CVE-2024-3343 en el plugin Otter Blocks para Gutenberg Editor permite a atacantes autenticados realizar Cross-Site Scripting almacenado a trav\u00e9s de los atributos de los bloques del plugin. El plugin Otter Blocks &#8211; Gutenberg Blocks, Page Builder for Gutenberg Editor &amp; FSE en versiones hasta la 2.6. As\u00ed que se recomienda a los usuarios [&hellip;]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[1201],"class_list":["post-3491","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-3343"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v21.8 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Vulnerabilidad de Cross-Site Scripting en Otter Blocks para Gutenberg Editor - SeguridadWordPress.es<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Vulnerabilidad de Cross-Site Scripting en Otter Blocks para Gutenberg Editor - SeguridadWordPress.es\" \/>\n<meta property=\"og:description\" content=\"La vulnerabilidad CVE-2024-3343 en el plugin Otter Blocks para Gutenberg Editor permite a atacantes autenticados realizar Cross-Site Scripting almacenado a trav\u00e9s de los atributos de los bloques del plugin. El plugin Otter Blocks &#8211; Gutenberg Blocks, Page Builder for Gutenberg Editor &amp; FSE en versiones hasta la 2.6. As\u00ed que se recomienda a los usuarios [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/\" \/>\n<meta property=\"og:site_name\" content=\"SeguridadWordPress.es\" \/>\n<meta property=\"article:published_time\" content=\"2024-04-10T21:45:14+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/\",\"url\":\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/\",\"name\":\"Vulnerabilidad de Cross-Site Scripting en Otter Blocks para Gutenberg Editor - SeguridadWordPress.es\",\"isPartOf\":{\"@id\":\"http:\/\/127.0.0.1\/#website\"},\"datePublished\":\"2024-04-10T21:45:14+00:00\",\"dateModified\":\"2024-04-10T21:45:14+00:00\",\"author\":{\"@id\":\"\"},\"breadcrumb\":{\"@id\":\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"http:\/\/127.0.0.1\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Vulnerabilidad de Cross-Site Scripting en Otter Blocks para Gutenberg Editor\"}]},{\"@type\":\"WebSite\",\"@id\":\"http:\/\/127.0.0.1\/#website\",\"url\":\"http:\/\/127.0.0.1\/\",\"name\":\"SeguridadWordPress.es\",\"description\":\"Recopilaci\u00f3n de vulnerabilidades WordPress.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"http:\/\/127.0.0.1\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Vulnerabilidad de Cross-Site Scripting en Otter Blocks para Gutenberg Editor - SeguridadWordPress.es","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/","og_locale":"en_US","og_type":"article","og_title":"Vulnerabilidad de Cross-Site Scripting en Otter Blocks para Gutenberg Editor - SeguridadWordPress.es","og_description":"La vulnerabilidad CVE-2024-3343 en el plugin Otter Blocks para Gutenberg Editor permite a atacantes autenticados realizar Cross-Site Scripting almacenado a trav\u00e9s de los atributos de los bloques del plugin. El plugin Otter Blocks &#8211; Gutenberg Blocks, Page Builder for Gutenberg Editor &amp; FSE en versiones hasta la 2.6. As\u00ed que se recomienda a los usuarios [&hellip;]","og_url":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/","og_site_name":"SeguridadWordPress.es","article_published_time":"2024-04-10T21:45:14+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/","url":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/","name":"Vulnerabilidad de Cross-Site Scripting en Otter Blocks para Gutenberg Editor - SeguridadWordPress.es","isPartOf":{"@id":"http:\/\/127.0.0.1\/#website"},"datePublished":"2024-04-10T21:45:14+00:00","dateModified":"2024-04-10T21:45:14+00:00","author":{"@id":""},"breadcrumb":{"@id":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/"]}]},{"@type":"BreadcrumbList","@id":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-otter-blocks-para-gutenberg-editor-2\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"http:\/\/127.0.0.1\/"},{"@type":"ListItem","position":2,"name":"Vulnerabilidad de Cross-Site Scripting en Otter Blocks para Gutenberg Editor"}]},{"@type":"WebSite","@id":"http:\/\/127.0.0.1\/#website","url":"http:\/\/127.0.0.1\/","name":"SeguridadWordPress.es","description":"Recopilaci\u00f3n de vulnerabilidades WordPress.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"http:\/\/127.0.0.1\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"}]}},"amp_enabled":true,"_links":{"self":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/3491"}],"collection":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/comments?post=3491"}],"version-history":[{"count":0,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/3491\/revisions"}],"wp:attachment":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/media?parent=3491"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/categories?post=3491"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/tags?post=3491"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}