4:["$","div",null,{"className":"wrap","children":[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"CollectionPage\",\"name\":\"Vulnerabilidades en pencidesign\",\"url\":\"https://vexday.io/es/vendor/pencidesign\",\"isPartOf\":{\"@type\":\"WebSite\",\"name\":\"Vexday\",\"url\":\"https://vexday.io\"},\"mainEntity\":{\"@type\":\"ItemList\",\"numberOfItems\":33},\"breadcrumb\":{\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Inicio\",\"item\":\"https://vexday.io/es\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Tecnologías\",\"item\":\"https://vexday.io/es/vendors\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"pencidesign\"}]}}"}}],["$","nav",null,{"className":"crumbs","children":[["$","$La",null,{"href":"/es","children":"Inicio"}]," ",["$","span",null,{"children":"/"}]," ",["$","$La",null,{"href":"/es/vendors","children":"Tecnologías"}]," ",["$","span",null,{"children":"/"}]," ",["$","b",null,{"children":"pencidesign"}]]}],["$","div",null,{"className":"sec-head","style":{"marginTop":18},"children":[["$","h1",null,{"style":{"fontSize":"1.7rem","margin":0,"fontFamily":"var(--font-display)","fontWeight":700},"children":["Vulnerabilidades en"," ",["$","span",null,{"style":{"color":"var(--orange)"},"children":"pencidesign"}]]}],["$","span",null,{"className":"t","children":["33"," ","resultados"]}]]}],["$","div",null,{"className":"list","children":[["$","$La","CVE-2024-3551",{"className":"item","href":"/es/cve/CVE-2024-3551","children":[["$","span",null,{"className":"cid","children":"CVE-2024-3551"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"Penci Soledad Data Migrator <= 1.3.0 - Unauthenticated Local File Inclusion"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2024-11289",{"className":"item","href":"/es/cve/CVE-2024-11289","children":[["$","span",null,{"className":"cid","children":"CVE-2024-11289"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"Soledad <= 8.5.9 - Unauthenticated Limited Local File Inclusion"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2023-49826",{"className":"item","href":"/es/cve/CVE-2023-49826","children":[["$","span",null,{"className":"cid","children":"CVE-2023-49826"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Soledad Theme <= 8.4.1 is vulnerable to PHP Object Injection"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.6%"}]]}],false]}]]}],["$","$La","CVE-2023-49825",{"className":"item","href":"/es/cve/CVE-2023-49825","children":[["$","span",null,{"className":"cid","children":"CVE-2023-49825"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Soledad Theme <= 8.4.1 is vulnerable to SQL Injection"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2025-8142",{"className":"item","href":"/es/cve/CVE-2025-8142","children":[["$","span",null,{"className":"cid","children":"CVE-2025-8142"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"Soledad <= 8.6.7 - Authenticated (Contributor+) Local File Inclusion via 'header_layout'"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2024-31368",{"className":"item","href":"/es/cve/CVE-2024-31368","children":[["$","span",null,{"className":"cid","children":"CVE-2024-31368"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Soledad theme <= 8.4.2 - Unauthenticated Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-31367",{"className":"item","href":"/es/cve/CVE-2024-31367","children":[["$","span",null,{"className":"cid","children":"CVE-2024-31367"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Soledad theme <= 8.4.2 - Authenticated Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2025-64223",{"className":"item","href":"/es/cve/CVE-2025-64223","children":[["$","span",null,{"className":"cid","children":"CVE-2025-64223"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress PenNews theme < 6.7.3 - Local File Inclusion vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2022-41788",{"className":"item","href":"/es/cve/CVE-2022-41788","children":[["$","span",null,{"className":"cid","children":"CVE-2022-41788"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Soledad premium theme <= 8.2.5 - Auth. Cross-Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2023-49827",{"className":"item","href":"/es/cve/CVE-2023-49827","children":[["$","span",null,{"className":"cid","children":"CVE-2023-49827"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Soledad Theme <= 8.4.1 is vulnerable to Cross Site Scripting (XSS)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2025-59588",{"className":"item","href":"/es/cve/CVE-2025-59588","children":[["$","span",null,{"className":"cid","children":"CVE-2025-59588"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Soledad Theme <= 8.6.8 - Local File Inclusion Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2025-64188",{"className":"item","href":"/es/cve/CVE-2025-64188","children":[["$","span",null,{"className":"cid","children":"CVE-2025-64188"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress Soledad theme <= 8.6.9 - Privilege Escalation vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2025-68066",{"className":"item","href":"/es/cve/CVE-2025-68066","children":[["$","span",null,{"className":"cid","children":"CVE-2025-68066"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Soledad theme <= 8.7.0 - Local File Inclusion vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-8105",{"className":"item","href":"/es/cve/CVE-2025-8105","children":[["$","span",null,{"className":"cid","children":"CVE-2025-8105"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"Soledad <= 8.6.7 - Unauthenticated Arbitrary Shortcode Execution"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-31369",{"className":"item","href":"/es/cve/CVE-2024-31369","children":[["$","span",null,{"className":"cid","children":"CVE-2024-31369"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Soledad theme <= 8.4.2 - Cross Site Request Forgery (CSRF) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-67572",{"className":"item","href":"/es/cve/CVE-2025-67572","children":[["$","span",null,{"className":"cid","children":"CVE-2025-67572"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress PenNews theme < 6.7.4 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2026-27055",{"className":"item","href":"/es/cve/CVE-2026-27055","children":[["$","span",null,{"className":"cid","children":"CVE-2026-27055"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Penci AI SmartContent Creator plugin <= 2.0 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2026-24600",{"className":"item","href":"/es/cve/CVE-2026-24600","children":[["$","span",null,{"className":"cid","children":"CVE-2026-24600"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Penci Review plugin <= 3.5 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2026-24601",{"className":"item","href":"/es/cve/CVE-2026-24601","children":[["$","span",null,{"className":"cid","children":"CVE-2026-24601"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Penci Pay Writer plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-8143",{"className":"item","href":"/es/cve/CVE-2025-8143","children":[["$","span",null,{"className":"cid","children":"CVE-2025-8143"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Soledad <= 8.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'pcsml_smartlists_h'"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}]]}],["$","div",null,{"className":"pagination","children":[["$","span",null,{"className":"off","children":"← anterior"}],["$","span",null,{"className":"pgnum","children":["página"," ","1"," / ","2"]}],["$","$La",null,{"href":"?page=2","children":"siguiente →"}]]}]]}]