{"id":3794,"date":"2024-05-22T17:45:23","date_gmt":"2024-05-22T17:45:23","guid":{"rendered":"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/"},"modified":"2024-05-22T17:45:23","modified_gmt":"2024-05-22T17:45:23","slug":"email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/","title":{"rendered":"Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce <= 5.7.17 – Falta de Autorizaci\u00f3n"},"content":{"rendered":"
El plugin Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce es vulnerable a acceso no autorizado de datos debido a una falta de verificaci\u00f3n de capacidades en la funci\u00f3n get_template_content en todas las versiones hasta, e incluyendo, la 5.7.17. Esto permite que atacantes autenticados, con acceso de suscriptor y superior, puedan obtener el contenido de publicaciones privadas y protegidas por contrase\u00f1a.<\/div>\n

<\/p>\n

Para subsanar este problema, se recomienda a los usuarios actualizar el plugin a la \u00faltima versi\u00f3n disponible lo antes posible. Adem\u00e1s, se debe revisar regularmente los permisos de usuario y limitar el acceso s\u00f3lo a aquellos roles necesarios para evitar posibles vulnerabilidades en el futuro.<\/div>\n
Es crucial mantener todos los plugins y temas de WordPress actualizados para protegerse de posibles vulnerabilidades de seguridad. La falta de autorizaci\u00f3n en el plugin Email Subscribers de Icegram Express es un recordatorio de la importancia de la seguridad en la gesti\u00f3n de un sitio web WordPress.<\/div>\n","protected":false},"excerpt":{"rendered":"

El plugin Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce es vulnerable a acceso no autorizado de datos debido a una falta de verificaci\u00f3n de capacidades en la funci\u00f3n get_template_content en todas las versiones hasta, e incluyendo, la 5.7.17. Esto permite que atacantes autenticados, con acceso de suscriptor y […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[1504],"class_list":["post-3794","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-3626"],"yoast_head":"\nEmail Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce <= 5.7.17 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce <= 5.7.17 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es\" \/>\n<meta property=\"og:description\" content=\"El plugin Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce es vulnerable a acceso no autorizado de datos debido a una falta de verificaci\u00f3n de capacidades en la funci\u00f3n get_template_content en todas las versiones hasta, e incluyendo, la 5.7.17. Esto permite que atacantes autenticados, con acceso de suscriptor y […]\" \/>\n<meta property=\"og:url\" content=\"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/\" \/>\n<meta property=\"og:site_name\" content=\"SeguridadWordPress.es\" \/>\n<meta property=\"article:published_time\" content=\"2024-05-22T17:45:23+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/\",\"url\":\"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/\",\"name\":\"Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce <= 5.7.17 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es\",\"isPartOf\":{\"@id\":\"http:\/\/127.0.0.1\/#website\"},\"datePublished\":\"2024-05-22T17:45:23+00:00\",\"dateModified\":\"2024-05-22T17:45:23+00:00\",\"author\":{\"@id\":\"\"},\"breadcrumb\":{\"@id\":\"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"http:\/\/127.0.0.1\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce <= 5.7.17 – Falta de Autorizaci\u00f3n\"}]},{\"@type\":\"WebSite\",\"@id\":\"http:\/\/127.0.0.1\/#website\",\"url\":\"http:\/\/127.0.0.1\/\",\"name\":\"SeguridadWordPress.es\",\"description\":\"Recopilaci\u00f3n de vulnerabilidades WordPress.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"http:\/\/127.0.0.1\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce <= 5.7.17 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/","og_locale":"en_US","og_type":"article","og_title":"Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce <= 5.7.17 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es","og_description":"El plugin Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce es vulnerable a acceso no autorizado de datos debido a una falta de verificaci\u00f3n de capacidades en la funci\u00f3n get_template_content en todas las versiones hasta, e incluyendo, la 5.7.17. Esto permite que atacantes autenticados, con acceso de suscriptor y […]","og_url":"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/","og_site_name":"SeguridadWordPress.es","article_published_time":"2024-05-22T17:45:23+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/","url":"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/","name":"Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce <= 5.7.17 - Falta de Autorizaci\u00f3n - SeguridadWordPress.es","isPartOf":{"@id":"http:\/\/127.0.0.1\/#website"},"datePublished":"2024-05-22T17:45:23+00:00","dateModified":"2024-05-22T17:45:23+00:00","author":{"@id":""},"breadcrumb":{"@id":"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/"]}]},{"@type":"BreadcrumbList","@id":"http:\/\/127.0.0.1\/email-subscribers-de-icegram-express-email-marketing-boletines-automatizacion-para-wordpress-woocommerce-5-7-17-falta-de-autorizacion\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"http:\/\/127.0.0.1\/"},{"@type":"ListItem","position":2,"name":"Email Subscribers de Icegram Express \u2013 Email Marketing, Boletines, Automatizaci\u00f3n para WordPress & WooCommerce <= 5.7.17 – Falta de Autorizaci\u00f3n"}]},{"@type":"WebSite","@id":"http:\/\/127.0.0.1\/#website","url":"http:\/\/127.0.0.1\/","name":"SeguridadWordPress.es","description":"Recopilaci\u00f3n de vulnerabilidades WordPress.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"http:\/\/127.0.0.1\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"}]}},"amp_enabled":true,"_links":{"self":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/3794"}],"collection":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/comments?post=3794"}],"version-history":[{"count":0,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/posts\/3794\/revisions"}],"wp:attachment":[{"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/media?parent=3794"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/categories?post=3794"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/127.0.0.1\/wp-json\/wp\/v2\/tags?post=3794"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}