4:["$","div",null,{"className":"wrap","children":[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"CollectionPage\",\"name\":\"Vulnerabilidades en AA-Team\",\"url\":\"https://vexday.io/es/vendor/AA-Team\",\"isPartOf\":{\"@type\":\"WebSite\",\"name\":\"Vexday\",\"url\":\"https://vexday.io\"},\"mainEntity\":{\"@type\":\"ItemList\",\"numberOfItems\":23},\"breadcrumb\":{\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Inicio\",\"item\":\"https://vexday.io/es\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Tecnologías\",\"item\":\"https://vexday.io/es/vendors\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"AA-Team\"}]}}"}}],["$","nav",null,{"className":"crumbs","children":[["$","$La",null,{"href":"/es","children":"Inicio"}]," ",["$","span",null,{"children":"/"}]," ",["$","$La",null,{"href":"/es/vendors","children":"Tecnologías"}]," ",["$","span",null,{"children":"/"}]," ",["$","b",null,{"children":"AA-Team"}]]}],["$","div",null,{"className":"sec-head","style":{"marginTop":18},"children":[["$","h1",null,{"style":{"fontSize":"1.7rem","margin":0,"fontFamily":"var(--font-display)","fontWeight":700},"children":["Vulnerabilidades en"," ",["$","span",null,{"style":{"color":"var(--orange)"},"children":"AA-Team"}]]}],["$","span",null,{"className":"t","children":["23"," ","resultados"]}]]}],["$","div",null,{"className":"list","children":[["$","$La","CVE-2024-33544",{"className":"item","href":"/es/cve/CVE-2024-33544","children":[["$","span",null,{"className":"cid","children":"CVE-2024-33544"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress WZone plugin <= 14.0.10 - Unauthenticated SQL Injection vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.6%"}]]}],false]}]]}],["$","$La","CVE-2025-7401",{"className":"item","href":"/es/cve/CVE-2025-7401","children":[["$","span",null,{"className":"cid","children":"CVE-2025-7401"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"Premium Age Verification / Restriction for WordPress <= 3.0.2 - Unauthenticated Arbitrary File Read and Write via remote_tunnel.php"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2024-33546",{"className":"item","href":"/es/cve/CVE-2024-33546","children":[["$","span",null,{"className":"cid","children":"CVE-2024-33546"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress WZone plugin <= 14.0.10 - Arbitrary SQL Update Execution vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2024-33549",{"className":"item","href":"/es/cve/CVE-2024-33549","children":[["$","span",null,{"className":"cid","children":"CVE-2024-33549"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress WZone plugin <= 14.0.10 - Privilege Escalation vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2024-33547",{"className":"item","href":"/es/cve/CVE-2024-33547","children":[["$","span",null,{"className":"cid","children":"CVE-2024-33547"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress WZone plugin <= 14.0.10 - Site Wide Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2026-27040",{"className":"item","href":"/es/cve/CVE-2026-27040","children":[["$","span",null,{"className":"cid","children":"CVE-2026-27040"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress WZone plugin <= 14.0.31 - Arbitrary File Deletion vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-33548",{"className":"item","href":"/es/cve/CVE-2024-33548","children":[["$","span",null,{"className":"cid","children":"CVE-2024-33548"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress WZone plugin <= 14.0.10 - Reflected Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-33545",{"className":"item","href":"/es/cve/CVE-2024-33545","children":[["$","span",null,{"className":"cid","children":"CVE-2024-33545"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress WZone plugin <= 14.0.10 - Unauthenticated Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2025-28973",{"className":"item","href":"/es/cve/CVE-2025-28973","children":[["$","span",null,{"className":"cid","children":"CVE-2025-28973"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Pro Bulk Watermark Plugin for WordPress <= 2.0 - Path Traversal Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-49403",{"className":"item","href":"/es/cve/CVE-2025-49403","children":[["$","span",null,{"className":"cid","children":"CVE-2025-49403"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Premium Age Verification / Restriction for WordPress Plugin <= 3.0.2 - Arbitrary File Download Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-4956",{"className":"item","href":"/es/cve/CVE-2025-4956","children":[["$","span",null,{"className":"cid","children":"CVE-2025-4956"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Pro Bulk Watermark Plugin for WordPress Theme <= 2.0 - Path Traversal Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-29004",{"className":"item","href":"/es/cve/CVE-2025-29004","children":[["$","span",null,{"className":"cid","children":"CVE-2025-29004"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"Privilege Escalation Vulnerability in AA-Team WordPress plugins"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2026-27039",{"className":"item","href":"/es/cve/CVE-2026-27039","children":[["$","span",null,{"className":"cid","children":"CVE-2026-27039"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress WZone plugin <= 14.0.31 - SQL Injection vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-14361",{"className":"item","href":"/es/cve/CVE-2025-14361","children":[["$","span",null,{"className":"cid","children":"CVE-2025-14361"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Woocommerce Envato Affiliates plugin <= 1.2.1 - Settings Change vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-30633",{"className":"item","href":"/es/cve/CVE-2025-30633","children":[["$","span",null,{"className":"cid","children":"CVE-2025-30633"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress Amazon Native Shopping Recommendations Plugin <= 1.3 - SQL Injection Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2022-27628",{"className":"item","href":"/es/cve/CVE-2022-27628","children":[["$","span",null,{"className":"cid","children":"CVE-2022-27628"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress WZone – Lite Version Plugin <= 3.1 Lite is vulnerable to Cross Site Request Forgery (CSRF)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-31044",{"className":"item","href":"/es/cve/CVE-2025-31044","children":[["$","span",null,{"className":"cid","children":"CVE-2025-31044"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Premium SEO Pack <= 3.3.2 - SQL Injection Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-30628",{"className":"item","href":"/es/cve/CVE-2025-30628","children":[["$","span",null,{"className":"cid","children":"CVE-2025-30628"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Amazon Affiliates Addon for WPBakery Page Builder (formerly Visual Composer) plugin <= 1.2 - SQL Injection Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-53297",{"className":"item","href":"/es/cve/CVE-2025-53297","children":[["$","span",null,{"className":"cid","children":"CVE-2025-53297"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Woocommerce Envato Affiliates plugin <= 1.2.1 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2026-25473",{"className":"item","href":"/es/cve/CVE-2026-25473","children":[["$","span",null,{"className":"cid","children":"CVE-2026-25473"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress WZone plugin <= 14.0.31 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}]]}],["$","div",null,{"className":"pagination","children":[["$","span",null,{"className":"off","children":"← anterior"}],["$","span",null,{"className":"pgnum","children":["página"," ","1"," / ","2"]}],["$","$La",null,{"href":"?page=2","children":"siguiente →"}]]}]]}]