Skip to main content
JavaScript is disabled in your browser. Please enable JavaScript for a better experience.
Pricing
Solutions
WordPress security
For hosts
Managed VDP
Bug bounty
Plugin auditing
Vulnerability database
Resources
Case studies
Security advisories
WordPress security 101
2025 security whitepaper
Login
$event.target.closest('button').nextElementSibling.querySelector('.oxy-site-navigation__mobile-close-wrapper > button').focus() )" aria-label="Open navigation menu" :aria-expanded="rootOpen" x-ref="openButton">
$refs.openButton.focus() )" x-init="menu = [{'ID':19943,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2024-12-13 14:11:25','post_content':'','post_title':'Pricing','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'pricing-2','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=19943','menu_order':1,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':19943,'menu_item_parent':'0','object_id':'19943','object':'custom','type':'custom','type_label':'Custom Link','title':'Pricing','url':'\/pricing\/','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9674,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2022-03-03 08:57:59','post_content':'','post_title':'Solutions','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'solutions-2','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9674','menu_order':2,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9674,'menu_item_parent':'0','object_id':'9674','object':'custom','type':'custom','type_label':'Custom Link','title':'Solutions','url':'','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':13562,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2023-05-05 05:23:43','post_content':'','post_title':'WordPress security','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'13562','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=13562','menu_order':3,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':13562,'menu_item_parent':'9674','object_id':'13440','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/wordpress-security\/','title':'WordPress security','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':16873,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2024-02-16 07:20:20','post_content':'','post_title':'For hosts','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'enterprise-api','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=16873','menu_order':4,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':16873,'menu_item_parent':'9674','object_id':'14712','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/for-hosts\/','title':'For hosts','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':18973,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2024-09-10 14:41:32','post_content':'','post_title':'Managed VDP','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'managed-vdp','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=18973','menu_order':5,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':18973,'menu_item_parent':'9674','object_id':'18393','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/for-plugins\/','title':'Managed VDP','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':18975,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2024-09-10 14:43:02','post_content':'','post_title':'Bug bounty','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'18975','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=18975','menu_order':6,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':18975,'menu_item_parent':'9674','object_id':'16699','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/bug-bounty\/','title':'Bug bounty','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':16728,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2024-01-25 12:48:02','post_content':'','post_title':'Plugin auditing','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'plugin-auditing','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=16728','menu_order':7,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':16728,'menu_item_parent':'9674','object_id':'13739','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/auditing\/','title':'Plugin auditing','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9673,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2022-03-03 08:40:22','post_content':'','post_title':'Vulnerability database','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'9673','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9673','menu_order':8,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9673,'menu_item_parent':'9674','object_id':'3349','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/database\/','title':'Vulnerability database','target':'_blank','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':22161,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2025-05-12 07:54:30','post_content':'','post_title':'Resources','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'resources-2','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=22161','menu_order':9,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':22161,'menu_item_parent':'0','object_id':'22161','object':'custom','type':'custom','type_label':'Custom Link','title':'Resources','url':'','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':22162,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2025-05-12 07:54:30','post_content':'','post_title':'Case studies','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'case-studies','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=22162','menu_order':10,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':22162,'menu_item_parent':'22161','object_id':'22162','object':'custom','type':'custom','type_label':'Custom Link','title':'Case studies','url':'https:\/\/patchstack.com\/category\/case-studies\/','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':22163,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2025-05-12 07:54:30','post_content':'','post_title':'Security advisories','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'security-advisories','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=22163','menu_order':11,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':22163,'menu_item_parent':'22161','object_id':'22163','object':'custom','type':'custom','type_label':'Custom Link','title':'Security advisories','url':'https:\/\/patchstack.com\/category\/security-advisories\/','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':22164,'post_author':'9','post_date':'2025-05-14 12:43:06','post_date_gmt':'2025-05-12 07:54:30','post_content':'','post_title':'WordPress security 101','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'wordpress-security-101','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:06','post_modified_gmt':'2025-05-14 12:43:06','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=22164','menu_order':12,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':22164,'menu_item_parent':'22161','object_id':'22164','object':'custom','type':'custom','type_label':'Custom Link','title':'WordPress security 101','url':'https:\/\/patchstack.com\/category\/wordpress-security-lessons-101\/','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':22165,'post_author':'9','post_date':'2025-05-14 12:43:07','post_date_gmt':'2025-05-12 07:54:30','post_content':'','post_title':'2025 security whitepaper','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'2025-security-whitepaper','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:07','post_modified_gmt':'2025-05-14 12:43:07','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=22165','menu_order':13,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':22165,'menu_item_parent':'22161','object_id':'22165','object':'custom','type':'custom','type_label':'Custom Link','title':'2025 security whitepaper','url':'https:\/\/patchstack.com\/whitepaper\/state-of-wordpress-security-in-2025\/','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9663,'post_author':'9','post_date':'2025-05-14 12:43:07','post_date_gmt':'2022-03-02 06:00:36','post_content':'','post_title':'Login','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'login-2','to_ping':'','pinged':'','post_modified':'2025-05-14 12:43:07','post_modified_gmt':'2025-05-14 12:43:07','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9663','menu_order':14,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9663,'menu_item_parent':'0','object_id':'9663','object':'custom','type':'custom','type_label':'Custom Link','title':'Login','url':'https:\/\/app.patchstack.com\/login','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''}];" x-data="{ useCtaStyles: 'false', howManyCtas: '1' }">
Start trial
🚀 Black Friday Deal! 50% off Developer Plan for 6 months
The latest WordPress security news and insights
Latest
WordPress Security 101
Plugin Recommendations
Security Advisories
Patchstack News
Case Studies
Bug Bounty
Search for:
Featured articles
29 January, 2025
Privilege Escalation Vulnerability Patched in Better Find and Replace Plugin
zeroday
better find and replace
privilege escalation
22 January, 2025
Unauthenticated Privilege Escalation Vulnerability in RH - Real Estate Theme
Critical Vulnerability
privilege escalation
ENVATO
10 January, 2025
Critical Vulnerability Patched in GiveWP Plugin
zeroday
givewp
Critical Vulnerability
php object injection
Zeroday bounties
Monthly security advice
Get the latest WordPress security intelligence delivered to your inbox.
NEW
: Get started with 5 bite-sized security lessons.
Email Signup
Email
Subscribe
21 January, 2025
Interview with Kévin Mosbahi AKA Mika
Patchstack alliance
researcher
security
14 January, 2025
How & Why You Should Remove Unused WordPress Plugins
10 January, 2025
Critical Vulnerability Patched in GiveWP Plugin
zeroday
givewp
Critical Vulnerability
php object injection
Zeroday bounties
8 January, 2025
Critical Vulnerabilities Found in Fancy Product Designer Plugin
Critical Vulnerability
arbitrary file upload
SQL Injection
ENVATO
27 December, 2024
Hardening WordPress – A Checklist To Get Started
24 December, 2024
How to Fix the WordPress Redirect Hack
23 December, 2024
SQL Injection in WordPress – Everything You Need To Know
Web Application Security
sqli
SQL Injection
23 December, 2024
Multiple Critical Vulnerabilities Patched in WPLMS and VibeBP Plugins
ENVATO
Critical Vulnerability
privilege escalation
arbitrary file upload
theme
SQL Injection
22 December, 2024
How to Configure the X-Frame-Options Header in WordPress
x-frame-options
security headers
content-security-policy
22 December, 2024
How To Protect WordPress Against Cross-Site Scripting Attacks (XSS)
xss vulnerabilities
wordpress xss
Cross-Site Scripting
21 December, 2024
Understanding Cookie Stealing Attacks: How They Work and Their Impact on WordPress Users
20 December, 2024
NEW: Announcing Patchstack API for Endless Automations
« Previous
1
2
3
4
5
6
…
33
Next »
Load more
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
For researchers
Bug bounty
Log in
Guidelines
Leaderboard
Learn
Discord
Resources
Vulnerability database
Whitepaper 2025
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2025
Patchstack
DPA
Privacy Policy
Terms & Conditions
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
For researchers
Bug bounty
Log in
Guidelines
Leaderboard
Learn
Discord
Resources
Vulnerability database
Whitepaper 2025
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2025
Patchstack
DPA
Privacy Policy
Terms & Conditions
Looks like your browser is blocking our support chat widget. Turn off adblockers and reload the page.
Reload page
close
chevron-right
chevron-down
bars
cross
menu