Undsgn Uncode Core
4 CVEs affecting Undsgn Uncode Core. Latest disclosed: 2025-07-04. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-51515 | High | 8.8 | 2024-04-12 | Missing Authorization vulnerability in Undsgn Uncode Core allows Privilege Escalation.This issue affects Uncode Core: from n/a through 2.8.8. |
CVE-2023-51500 | High | 7.7 | 2024-04-17 | Missing Authorization vulnerability in Undsgn Uncode Core.This issue affects Uncode Core: from n/a through 2.8.8. |
CVE-2025-6944 | Medium | 6.4 | 2025-07-04 | The Uncode Core plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'uncode_hl_text' and 'uncode_text_icon' shortcodes in all ve… |
CVE-2024-13689 | Medium | 6.3 | 2025-02-18 | The Uncode Core plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.9.1.6. This is due to the software… |