Skip to main content
JavaScript is disabled in your browser. Please enable JavaScript for a better experience.
Pricing
Solutions
WordPress security
Enterprise API
Managed VDP
Bug Bounty
Plugin auditing
Vulnerability database
Login
$event.target.closest('button').nextElementSibling.querySelector('.oxy-site-navigation__mobile-close-wrapper > button').focus() )" aria-label="Open navigation menu" :aria-expanded="rootOpen" x-ref="openButton">
$refs.openButton.focus() )" x-init="menu = [{'ID':19943,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2024-12-13 14:11:25','post_content':'','post_title':'Pricing','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'pricing-2','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=19943','menu_order':1,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':19943,'menu_item_parent':'0','object_id':'19943','object':'custom','type':'custom','type_label':'Custom Link','title':'Pricing','url':'\/pricing\/','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9674,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2022-03-03 08:57:59','post_content':'','post_title':'Solutions','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'solutions-2','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9674','menu_order':2,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9674,'menu_item_parent':'0','object_id':'9674','object':'custom','type':'custom','type_label':'Custom Link','title':'Solutions','url':'#!','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':13562,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2023-05-05 05:23:43','post_content':'','post_title':'WordPress security','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'13562','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=13562','menu_order':3,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':13562,'menu_item_parent':'9674','object_id':'13440','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/wordpress-security\/','title':'WordPress security','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':16873,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2024-02-16 07:20:20','post_content':'','post_title':'Enterprise API','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'enterprise-api','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=16873','menu_order':4,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':16873,'menu_item_parent':'9674','object_id':'14712','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/for-hosts\/','title':'Enterprise API','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':18973,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2024-09-10 14:41:32','post_content':'','post_title':'Managed VDP','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'managed-vdp','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=18973','menu_order':5,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':18973,'menu_item_parent':'9674','object_id':'18393','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/for-plugins\/','title':'Managed VDP','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':18975,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2024-09-10 14:43:02','post_content':' ','post_title':'','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'18975','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=18975','menu_order':6,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':18975,'menu_item_parent':'9674','object_id':'16699','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/bug-bounty\/','title':'Bug Bounty','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':16728,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2024-01-25 12:48:02','post_content':'','post_title':'Plugin auditing','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'plugin-auditing','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=16728','menu_order':7,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':16728,'menu_item_parent':'9674','object_id':'13739','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/auditing\/','title':'Plugin auditing','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9673,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2022-03-03 08:40:22','post_content':'','post_title':'Vulnerability database','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'9673','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9673','menu_order':8,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9673,'menu_item_parent':'9674','object_id':'3349','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/database\/','title':'Vulnerability database','target':'_blank','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9663,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2022-03-02 06:00:36','post_content':'','post_title':'Login','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'login-2','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9663','menu_order':9,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9663,'menu_item_parent':'0','object_id':'9663','object':'custom','type':'custom','type_label':'Custom Link','title':'Login','url':'https:\/\/app.patchstack.com\/login','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''}];" x-data="{ useCtaStyles: 'false', howManyCtas: '1' }">
Start trial
Latest
WordPress how-to's
Plugin recommendations
Interview
WordPress Security
Virtual Patches
Bug bounty
WordPress Security 101
Security advice
Security advisories
Patchstack news
Patchstack how-to's
Rafie Muhammad
Security Researcher at Patchstack
15 November, 2023
Authenticated Stored XSS in WooCommerce and Jetpack Plugin
woocommerce
jetpack
xss
8 November, 2023
Arbitrary Attachment Render to XSS in Elementor Plugin
Elementor
xss
13 October, 2023
WordPress Core 6.3.2 Security Update – Technical Advisory
WordPress core
security release
12 October, 2023
Pre-Auth Arbitrary File Upload in User Submitted Posts Plugin
Critical Vulnerability
27 September, 2023
Two Paths to Privilege Escalation Vulnerability In The Simple Membership Plugin
simple membership
privilege escalation
15 September, 2023
Authenticated Privilege Escalation Vulnerability in Essential Addons for Elementor
Essential Addons for Elementor
privilege escalation
6 September, 2023
Unauthenticated PHP Object Injection in Flatsome Theme <= 3.17.5
php object injection
flatsome
31 August, 2023
Critical Arbitrary File Upload Patched in Forminator Plugin
Critical Vulnerability
arbitrary file upload
forminator
30 August, 2023
Pre-Auth Access Token Manipulation in All-in-One WP Migration Extensions
access token
all-in-one wp migration
24 August, 2023
Critical Vulnerabilities Patched in Jupiter X Core Plugin
Jupiter X
Critical Vulnerability
arbitrary file upload
account takeover
10 August, 2023
Multiple High and Critical Vulnerabilities in Avada Theme and Plugin
avada
xss
rce
ssrf
sqli
3 August, 2023
Authenticated RCE in JetElements For Elementor Plugin
Critical Vulnerability
Elementor
rce
jetelements
« Previous
1
2
3
4
5
Next »
Load more
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
For researchers
Bug bounty
Log in
Guidelines
Learn
Discord
Resources
Vulnerability database
Whitepaper 2024
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2024
Patchstack
DPA
Privacy Policy
Terms & Conditions
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
For researchers
Bug bounty
Log in
Guidelines
Learn
Discord
Resources
Vulnerability database
Whitepaper 2024
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2024
Patchstack
DPA
Privacy Policy
Terms & Conditions
This website uses cookies.
Learn more.
Looks like your browser is blocking our support chat widget. Turn off adblockers and reload the page.
Reload page
close
chevron-down
bars
cross
menu