Undsgn Uncode Core

4 CVEs affecting Undsgn Uncode Core. Latest disclosed: 2025-07-04. Critical: 0, High: 2.

Top CVEs affecting Undsgn Uncode Core
CVESeverityScorePublishedSummary
CVE-2023-51515High8.82024-04-12Missing Authorization vulnerability in Undsgn Uncode Core allows Privilege Escalation.This issue affects Uncode Core: from n/a through 2.8.8.
CVE-2023-51500High7.72024-04-17Missing Authorization vulnerability in Undsgn Uncode Core.This issue affects Uncode Core: from n/a through 2.8.8.
CVE-2025-6944Medium6.42025-07-04The Uncode Core plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'uncode_hl_text' and 'uncode_text_icon' shortcodes in all ve…
CVE-2024-13689Medium6.32025-02-18The Uncode Core plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.9.1.6. This is due to the software…