Uncode Core

Vulnerabilities 5Slug uncode-coreLatest version 1.0Plugin page →

Minimum safe version

2.9.4.3

Update to 2.9.4.3 or later to address 5 fixable vulnerabilities

Latest available1.0 ✗

Medium 6.4

2025-07-04< 2.9.4.3

Uncode Core <= 2.9.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcodes

Medium 6.3

2025-02-18< 2.9.1.7

CVE-2024-13689

High 7.7

2024-12-21< 2.8.9

WordPress Uncode Core Plugin <= 2.8.8 is vulnerable to Arbitrary File Deletion

High 8.8

2024-12-21< 2.8.9

WordPress Uncode Core Plugin <= 2.8.8 is vulnerable to Privilege Escalation

High 7.1

2024-12-21< 2.8.7

WordPress Uncode Core Plugin <= 2.8.6 is vulnerable to Cross Site Scripting (XSS)