4:["$","div",null,{"className":"wrap","children":[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"CollectionPage\",\"name\":\"Vulnerabilidades en rustaurius\",\"url\":\"https://vexday.io/es/vendor/rustaurius\",\"isPartOf\":{\"@type\":\"WebSite\",\"name\":\"Vexday\",\"url\":\"https://vexday.io\"},\"mainEntity\":{\"@type\":\"ItemList\",\"numberOfItems\":31},\"breadcrumb\":{\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Inicio\",\"item\":\"https://vexday.io/es\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Tecnologías\",\"item\":\"https://vexday.io/es/vendors\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"rustaurius\"}]}}"}}],["$","nav",null,{"className":"crumbs","children":[["$","$La",null,{"href":"/es","children":"Inicio"}]," ",["$","span",null,{"children":"/"}]," ",["$","$La",null,{"href":"/es/vendors","children":"Tecnologías"}]," ",["$","span",null,{"children":"/"}]," ",["$","b",null,{"children":"rustaurius"}]]}],["$","div",null,{"className":"sec-head","style":{"marginTop":18},"children":[["$","h1",null,{"style":{"fontSize":"1.7rem","margin":0,"fontFamily":"var(--font-display)","fontWeight":700},"children":["Vulnerabilidades en"," ",["$","span",null,{"style":{"color":"var(--orange)"},"children":"rustaurius"}]]}],["$","span",null,{"className":"t","children":["31"," ","resultados"]}]]}],["$","div",null,{"className":"list","children":[["$","$La","CVE-2025-2005",{"className":"item","href":"/es/cve/CVE-2025-2005","children":[["$","span",null,{"className":"cid","children":"CVE-2025-2005"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"Front-End-Only-Users <= 3.2.32 - Unauthenticated Arbitrary File Upload"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"17.7%"}]]}],false]}]]}],["$","$La","CVE-2020-36726",{"className":"item","href":"/es/cve/CVE-2020-36726","children":[["$","span",null,{"className":"cid","children":"CVE-2020-36726"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"Ultimate Reviews < 2.1.33 - PHP Object Injection"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"1.6%"}]]}],false]}]]}],["$","$La","CVE-2024-7607",{"className":"item","href":"/es/cve/CVE-2024-7607","children":[["$","span",null,{"className":"cid","children":"CVE-2024-7607"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"Front End Users <= 3.2.28 - Authenticated (Contributor+) Time-Based SQL Injection"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2025-30861",{"className":"item","href":"/es/cve/CVE-2025-30861","children":[["$","span",null,{"className":"cid","children":"CVE-2025-30861"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Five Star Restaurant Reservations plugin <= 2.6.29 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2023-4471",{"className":"item","href":"/es/cve/CVE-2023-4471","children":[["$","span",null,{"className":"cid","children":"CVE-2023-4471"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Order Tracking Pro <= 3.3.6 - Reflected Cross-Site Scripting"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2025-49288",{"className":"item","href":"/es/cve/CVE-2025-49288","children":[["$","span",null,{"className":"cid","children":"CVE-2025-49288"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Ultimate WP Mail plugin <= 1.3.5 - Account Takeover via Email Log Leak Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2025-6993",{"className":"item","href":"/es/cve/CVE-2025-6993","children":[["$","span",null,{"className":"cid","children":"CVE-2025-6993"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"Ultimate WP Mail 1.0.17 - 1.3.6 - Missing Authorization to Authenticated (Contributor+) Privilege Escalation via get_email_log_details Function"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-12410",{"className":"item","href":"/es/cve/CVE-2024-12410","children":[["$","span",null,{"className":"cid","children":"CVE-2024-12410"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Front End Users <= 3.2.32 - Authenticated (Admin+) SQL injection"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-5459",{"className":"item","href":"/es/cve/CVE-2024-5459","children":[["$","span",null,{"className":"cid","children":"CVE-2024-5459"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Restaurant Menu and Food Ordering <= 2.4.16 - Missing Authorization to Menu Creation"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-7606",{"className":"item","href":"/es/cve/CVE-2024-7606","children":[["$","span",null,{"className":"cid","children":"CVE-2024-7606"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Front End Users <= 3.2.28 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2023-4500",{"className":"item","href":"/es/cve/CVE-2023-4500","children":[["$","span",null,{"className":"cid","children":"CVE-2023-4500"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Order Tracking Pro <= 3.3.6 - Authenticated (Administrator+) Stored Cross-Site Scripting"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-49266",{"className":"item","href":"/es/cve/CVE-2025-49266","children":[["$","span",null,{"className":"cid","children":"CVE-2025-49266"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Ultimate Reviews plugin <= 3.2.14 - Reflected Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-13563",{"className":"item","href":"/es/cve/CVE-2024-13563","children":[["$","span",null,{"className":"cid","children":"CVE-2024-13563"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Front End Users <= 3.2.30 - Authenticated (Contributor+) Stored Cross-Site Scripting via forgot-password Shortcode"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-32694",{"className":"item","href":"/es/cve/CVE-2025-32694","children":[["$","span",null,{"className":"cid","children":"CVE-2025-32694"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Ultimate WP Mail plugin <= 1.3.10 - Open Redirection vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-47490",{"className":"item","href":"/es/cve/CVE-2025-47490","children":[["$","span",null,{"className":"cid","children":"CVE-2025-47490"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Ultimate WP Mail plugin <= 1.3.4 - SQL Injection Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-53454",{"className":"item","href":"/es/cve/CVE-2025-53454","children":[["$","span",null,{"className":"cid","children":"CVE-2025-53454"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Ultimate WP Mail Plugin <= 1.3.8 - Cross Site Scripting (XSS) Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-47580",{"className":"item","href":"/es/cve/CVE-2025-47580","children":[["$","span",null,{"className":"cid","children":"CVE-2025-47580"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Front End Users plugin <= 3.2.35 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-26877",{"className":"item","href":"/es/cve/CVE-2025-26877","children":[["$","span",null,{"className":"cid","children":"CVE-2025-26877"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Front End Users Plugin <= 3.2.30 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-68044",{"className":"item","href":"/es/cve/CVE-2025-68044","children":[["$","span",null,{"className":"cid","children":"CVE-2025-68044"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Five Star Restaurant Reservations plugin <= 2.7.4 - Insecure Direct Object References (IDOR) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2026-4336",{"className":"item","href":"/es/cve/CVE-2026-4336","children":[["$","span",null,{"className":"cid","children":"CVE-2026-4336"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Ultimate FAQ Accordion Plugin <= 2.4.7 - Authenticated (Author+) Stored Cross-Site Scripting via FAQ Content"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}]]}],["$","div",null,{"className":"pagination","children":[["$","span",null,{"className":"off","children":"← anterior"}],["$","span",null,{"className":"pgnum","children":["página"," ","1"," / ","2"]}],["$","$La",null,{"href":"?page=2","children":"siguiente →"}]]}]]}]