CVE-2024-8350

LOW

Uncanny Groups for LearnDash <6.1.0.1 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-8350. PoCs published by karlemilnikka.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2024-8349 and CVE-2024-8350, focusing on privilege escalation and missing authorization vulnerabilities in the Uncanny Groups for LearnDash plugin. It includes root cause analysis, patch details, and exploitation mechanics.

Description

The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to user group add due to a missing capability check on the /wp-json/ulgm_management/v1/add_user/ REST API endpoint in all versions up to, and including, 6.1.0.1. This makes it possible for authenticated attackers, with group leader-level access and above, to add users to their group which ultimately allows them to leverage CVE-2024-8349 and gain admin access to the site.

Exploits (1)

github WRITEUP

by karlemilnikka · poc

https://github.com/karlemilnikka/CVE-2024-8349-and-CVE-2024-8350

View Code ZIP pw:eip

This repository provides a detailed technical analysis of CVE-2024-8349 and CVE-2024-8350, focusing on privilege escalation and missing authorization vulnerabilities in the Uncanny Groups for LearnDash plugin. It includes root cause analysis, patch details, and exploitation mechanics.

Classification

Writeup 100%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Uncanny Groups for LearnDash (uncanny-learndash-group) <= 6.1.0.1

Auth required

Prerequisites: Group Leader role · Plugin feature 'Allow group leaders to edit users' enabled (for CVE-2024-8349)

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1078 - Valid Accounts

devstral-2 · analyzed May 17, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Third Party Advisory

https://github.com/karlemilnikka/CVE-2024-8349-and-CVE-2024-8350

View Exploit ZIP pw:eip

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/a38a58de-5f7d-4033-9a65-41b590b7d510?source=cve

Scores

CVSS v3 2.7

EPSS 0.0042

EPSS Percentile 33.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-862

Status published

Products (2)

Uncanny Owl/Uncanny Groups for LearnDash < 6.1.0.1

uncannyowl/uncanny_groups_for_learndash < 6.1.1

Published Sep 25, 2024

Tracked Since Feb 18, 2026