{"id":4323,"date":"2024-07-18T19:45:16","date_gmt":"2024-07-18T19:45:16","guid":{"rendered":"http:\/\/127.0.0.1\/vulnerabilidad-en-yith-essential-kit-for-woocommerce-1-2-34-0-falta-de-autorizacion-para-instalar-activar-y-desactivar-plugins\/"},"modified":"2024-07-18T19:45:16","modified_gmt":"2024-07-18T19:45:16","slug":"vulnerabilidad-en-yith-essential-kit-for-woocommerce-1-2-34-0-falta-de-autorizacion-para-instalar-activar-y-desactivar-plugins","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/vulnerabilidad-en-yith-essential-kit-for-woocommerce-1-2-34-0-falta-de-autorizacion-para-instalar-activar-y-desactivar-plugins\/","title":{"rendered":"Vulnerabilidad en YITH Essential Kit for WooCommerce #1 <= 2.34.0 – Falta de Autorizaci\u00f3n para Instalar, Activar y Desactivar Plugins"},"content":{"rendered":"
<\/p>\n
El plugin YITH Essential Kit for WooCommerce #1 para WordPress es vulnerable a la modificaci\u00f3n no autorizada de datos debido a la falta de una verificaci\u00f3n de capacidad en las funciones ‘activate_module’, ‘deactivate_module’ e ‘install_module’ en todas las versiones hasta, e incluyendo, la 2.34.0. Esto permite a atacantes autenticados, con acceso de nivel Suscriptor y […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[2031],"class_list":["post-4323","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-6799"],"yoast_head":"\n