{"id":4316,"date":"2024-07-17T14:45:39","date_gmt":"2024-07-17T14:45:39","guid":{"rendered":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-svg-support-2-5-5\/"},"modified":"2024-07-17T14:45:39","modified_gmt":"2024-07-17T14:45:39","slug":"vulnerabilidad-de-cross-site-scripting-en-svg-support-2-5-5","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/vulnerabilidad-de-cross-site-scripting-en-svg-support-2-5-5\/","title":{"rendered":"Vulnerabilidad de Cross-Site Scripting en SVG Support <= 2.5.5"},"content":{"rendered":"
<\/p>\n
El plugin SVG Support para WordPress es vulnerable a Cross-Site Scripting almacenado a trav\u00e9s de la funci\u00f3n de carga de SVG en todas las versiones hasta, e incluyendo, la 2.5.5 debido a una insuficiente sanitizaci\u00f3n de la entrada y escape de la salida, incluso cuando la funci\u00f3n ‘Sanitize SVG while uploading’ est\u00e1 habilitada. Esto permite […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[2024],"class_list":["post-4316","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2023-6708"],"yoast_head":"\n