{"id":4191,"date":"2024-07-01T22:45:26","date_gmt":"2024-07-01T22:45:26","guid":{"rendered":"http:\/\/127.0.0.1\/vulnerabilidad-en-cost-calculator-builder-3-2-12-permite-la-creacion-de-contenido-arbitrario-sin-autorizacion\/"},"modified":"2024-07-01T22:45:26","modified_gmt":"2024-07-01T22:45:26","slug":"vulnerabilidad-en-cost-calculator-builder-3-2-12-permite-la-creacion-de-contenido-arbitrario-sin-autorizacion","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/vulnerabilidad-en-cost-calculator-builder-3-2-12-permite-la-creacion-de-contenido-arbitrario-sin-autorizacion\/","title":{"rendered":"Vulnerabilidad en Cost Calculator Builder <= 3.2.12 permite la creaci\u00f3n de contenido arbitrario sin autorizaci\u00f3n"},"content":{"rendered":"
<\/p>\n
El plugin Cost Calculator Builder para WordPress es vulnerable a la modificaci\u00f3n no autorizada de datos debido a la falta de comprobaci\u00f3n de capacidades en las funciones ’embed-create-page’ y ’embed-insert-pages’ en todas las versiones hasta, e incluyendo, la 3.2.12. Esto permite a atacantes autenticados, con acceso de nivel Suscriptor y superior, crear publicaciones arbitrarias y […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[1899],"class_list":["post-4191","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-6012"],"yoast_head":"\n