Uncode Core — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in Uncode Core, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-6944	Uncode Core <= 2.9.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcodes CWE-79	6.4	Medium	2025-07-04
CVE-2024-13689	Uncode Core <= 2.9.1.6 - Authenticated (Subscriber+) Arbitrary Shortcode Execution in uncode_get_medias CWE-94	6.3	Medium	2025-02-18
CVE-2023-51500	WordPress Uncode Core plugin <= 2.8.8 - Arbitrary File Deletion vulnerability CWE-862	7.7	High	2024-04-17
CVE-2023-51515	WordPress Uncode Core plugin <= 2.8.8 - Privilege Escalation vulnerability CWE-862	8.8	High	2024-04-12

All 4 known CVE vulnerabilities affecting Uncode Core with full Chinese analysis, references, and POCs where available.