Themes Vulnerabilities

Uncode < 2.9.1.7 - Subscriber+ Arbitrary File Read in uncode_recordMedia

Description

The theme is vulnerable to arbitrary file read due to insufficient input validation in the 'uncode_recordMedia' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read arbitrary files on the server.

Affects Themes

uncode
Fixed in 2.9.1.7

References

CVE
CVE-2024-13691
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/d592141d-191b-4739-bc0a-07549ef2f31b

Miscellaneous

Original Researcher
mikemyers
Verified
No
WPVDB ID
6fe60560-0aa0-46e4-b4fc-64a535e38c1d

Timeline

Publicly Published
2025-02-17 (about 1 year ago)
Added
2025-02-20 (about 1 year ago)
Last Updated
2025-02-20 (about 1 year ago)

Other

Published
Title
Published
2014-08-01
Title
SCv1 - download.php file Parameter Traversal Remote File Access
Published
2023-05-30
Title
Favorites < 2.3.3 - Contributor+ Stored Cross-Site Scripting via Shortcode
Published
2023-09-25
Title
Active Directory Integration / LDAP Integration < 4.2 - Admin LDAP Passback
Published
2023-09-09
Title
ProfilePress < 4.13.2 - Limited Privilege Escalation via 'acceptable_defined_roles'
Published
2014-08-01
Title
WordPress <= 3.3.2 wp-admin/includes/class-wp-posts-list-table.php sensitive information disclosure by visiting a draft