{"id":3591,"date":"2024-04-22T17:45:59","date_gmt":"2024-04-22T17:45:59","guid":{"rendered":"http:\/\/127.0.0.1\/colibri-page-builder-1-0-262-cross-site-scripting-almacenado-autor\/"},"modified":"2024-04-22T17:45:59","modified_gmt":"2024-04-22T17:45:59","slug":"colibri-page-builder-1-0-262-cross-site-scripting-almacenado-autor","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/colibri-page-builder-1-0-262-cross-site-scripting-almacenado-autor\/","title":{"rendered":"Colibri Page Builder <= 1.0.262 – Cross-Site Scripting Almacenado (Autor+)"},"content":{"rendered":"
<\/p>\n
La vulnerabilidad CVE-2024-3338 en el plugin Colibri Page Builder para WordPress permite a atacantes autenticados con nivel de autor o superior, inyectar scripts web arbitrarios en p\u00e1ginas que se ejecutar\u00e1n cuando un usuario acceda a esa p\u00e1gina. La falla de seguridad reside en la falta de sanitizaci\u00f3n de la entrada y escapado de la salida […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[1301],"yoast_head":"\n