{"id":4376,"date":"2024-07-26T21:15:17","date_gmt":"2024-07-26T21:15:17","guid":{"rendered":"http:\/\/127.0.0.1\/campaign-monitor-for-wordpress-2-8-15-divulgacion-de-ruta-completa-no-autenticada\/"},"modified":"2024-07-26T21:15:17","modified_gmt":"2024-07-26T21:15:17","slug":"campaign-monitor-for-wordpress-2-8-15-divulgacion-de-ruta-completa-no-autenticada","status":"publish","type":"post","link":"http:\/\/127.0.0.1\/campaign-monitor-for-wordpress-2-8-15-divulgacion-de-ruta-completa-no-autenticada\/","title":{"rendered":"Campaign Monitor for WordPress <= 2.8.15 – Divulgaci\u00f3n de Ruta Completa no Autenticada"},"content":{"rendered":"
<\/p>\n
El plugin Campaign Monitor for WordPress para WordPress es vulnerable a una Divulgaci\u00f3n de Ruta Completa en todas las versiones hasta, e incluyendo, la 2.8.15. Esto se debe a que el plugin no restringe adecuadamente el acceso directo a \/forms\/views\/admin\/create.php y display_errors est\u00e1 habilitado. Esto hace posible que atacantes no autenticados puedan recuperar la ruta […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[2084],"class_list":["post-4376","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-cve-2024-6569"],"yoast_head":"\n