Skip to main content
JavaScript is disabled in your browser. Please enable JavaScript for a better experience.
Pricing
Solutions
WordPress security
For care plans
API for developers
API for hosts
For plugin developers
For researchers
Vulnerability database
Community
Login
$event.target.closest('button').nextElementSibling.querySelector('.oxy-site-navigation__mobile-close-wrapper > button').focus() )" aria-label="Open navigation menu" :aria-expanded="rootOpen" x-ref="openButton">
$refs.openButton.focus() )" x-init="menu = [{'ID':13478,'post_author':'9','post_date':'2023-08-18 04:59:15','post_date_gmt':'2023-05-02 16:02:06','post_content':'','post_title':'Pricing','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'pricing','to_ping':'','pinged':'','post_modified':'2023-08-18 04:59:15','post_modified_gmt':'2023-08-18 04:59:15','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=13478','menu_order':1,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':13478,'menu_item_parent':'0','object_id':'13110','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/pricing\/','title':'Pricing','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9674,'post_author':'9','post_date':'2023-08-18 04:59:15','post_date_gmt':'2022-03-03 08:57:59','post_content':'','post_title':'Solutions','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'solutions-2','to_ping':'','pinged':'','post_modified':'2023-08-18 04:59:15','post_modified_gmt':'2023-08-18 04:59:15','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9674','menu_order':2,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9674,'menu_item_parent':'0','object_id':'9674','object':'custom','type':'custom','type_label':'Custom Link','title':'Solutions','url':'','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':13562,'post_author':'9','post_date':'2023-08-18 04:59:15','post_date_gmt':'2023-05-05 05:23:43','post_content':'','post_title':'WordPress security','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'13562','to_ping':'','pinged':'','post_modified':'2023-08-18 04:59:15','post_modified_gmt':'2023-08-18 04:59:15','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=13562','menu_order':3,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':13562,'menu_item_parent':'9674','object_id':'13440','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/wordpress-security\/','title':'WordPress security','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':13479,'post_author':'9','post_date':'2023-08-18 04:59:15','post_date_gmt':'2023-05-02 16:02:06','post_content':'','post_title':'For care plans','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'13479','to_ping':'','pinged':'','post_modified':'2023-08-18 04:59:15','post_modified_gmt':'2023-08-18 04:59:15','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=13479','menu_order':4,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':13479,'menu_item_parent':'9674','object_id':'13054','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/for-agencies\/','title':'For care plans','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':15077,'post_author':'9','post_date':'2023-08-18 04:59:15','post_date_gmt':'2023-08-18 04:59:15','post_content':'','post_title':'API for developers','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'api-for-developers','to_ping':'','pinged':'','post_modified':'2023-08-18 04:59:15','post_modified_gmt':'2023-08-18 04:59:15','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=15077','menu_order':5,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':15077,'menu_item_parent':'9674','object_id':'9381','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/threat-intel-feed\/','title':'API for developers','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':15070,'post_author':'9','post_date':'2023-08-18 04:59:15','post_date_gmt':'2023-08-16 04:15:17','post_content':'','post_title':'API for hosts','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'for-hosts','to_ping':'','pinged':'','post_modified':'2023-08-18 04:59:15','post_modified_gmt':'2023-08-18 04:59:15','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=15070','menu_order':6,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':15070,'menu_item_parent':'9674','object_id':'14712','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/for-hosts\/','title':'API for hosts','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':13321,'post_author':'9','post_date':'2023-08-18 04:59:15','post_date_gmt':'2023-04-25 09:40:03','post_content':'','post_title':'For plugin developers','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'for-plugins-2','to_ping':'','pinged':'','post_modified':'2023-08-18 04:59:15','post_modified_gmt':'2023-08-18 04:59:15','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=13321','menu_order':7,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':13321,'menu_item_parent':'9674','object_id':'13269','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/for-plugins\/','title':'For plugin developers','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':10353,'post_author':'9','post_date':'2023-08-18 04:59:15','post_date_gmt':'2022-05-11 09:43:59','post_content':'','post_title':'For researchers','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'10353','to_ping':'','pinged':'','post_modified':'2023-08-18 04:59:15','post_modified_gmt':'2023-08-18 04:59:15','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=10353','menu_order':8,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':10353,'menu_item_parent':'9674','object_id':'10307','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/alliance\/','title':'For researchers','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9673,'post_author':'9','post_date':'2023-08-18 04:59:15','post_date_gmt':'2022-03-03 08:40:22','post_content':'','post_title':'Vulnerability database','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'9673','to_ping':'','pinged':'','post_modified':'2023-08-18 04:59:15','post_modified_gmt':'2023-08-18 04:59:15','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9673','menu_order':9,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9673,'menu_item_parent':'9674','object_id':'3349','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/database\/','title':'Vulnerability database','target':'_blank','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':13575,'post_author':'9','post_date':'2023-08-18 04:59:15','post_date_gmt':'2023-05-05 11:38:38','post_content':'','post_title':'Community','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'community','to_ping':'','pinged':'','post_modified':'2023-08-18 04:59:15','post_modified_gmt':'2023-08-18 04:59:15','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=13575','menu_order':10,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':13575,'menu_item_parent':'0','object_id':'13575','object':'custom','type':'custom','type_label':'Custom Link','title':'Community','url':'https:\/\/www.facebook.com\/groups\/patchstackcommunity\/','target':'_blank','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9663,'post_author':'9','post_date':'2023-08-18 04:59:15','post_date_gmt':'2022-03-02 06:00:36','post_content':'','post_title':'Login','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'login-2','to_ping':'','pinged':'','post_modified':'2023-08-18 04:59:15','post_modified_gmt':'2023-08-18 04:59:15','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9663','menu_order':11,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9663,'menu_item_parent':'0','object_id':'9663','object':'custom','type':'custom','type_label':'Custom Link','title':'Login','url':'https:\/\/app.patchstack.com\/login','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''}];" x-data="{ useCtaStyles: 'false', howManyCtas: '1' }">
Start FREE
🎉 NEW: Reduce alert fatigue with the new Patch Priority scoring system
Latest
WordPress How-To's
Security Advice
Security Advisories
Patchstack News
Patchstack How-To's
Robert Rowley
Author at Patchstack
24 April, 2023
What Is An Open-Source Fork And How To Secure it?
patchstack weekly
11 April, 2023
Patchstack Weekly #66: How To Secure Your Code Against Insecure Inclusion Bugs
patchstack weekly
5 April, 2023
Patchstack Weekly #65: The One Serious Vulnerability Open-Source Doesn’t Have to Worry About
patchstack weekly
1 April, 2023
WordPress Source Code Exposed Online
WordPress Source Code
28 March, 2023
Patchstack Weekly #64: Understanding Security Bug Severity
patchstack weekly
22 March, 2023
Patchstack Weekly #63: How To Spot Potentially Abandoned Plugins in Your WordPress Site
abandoned plugins
14 March, 2023
Patchstack Weekly #62: The Patchstack State of WordPress Security Report
patchstack weekly
6 March, 2023
Patching a Stored XSS Bug In the “tinymce-custom-styles” Plugin
last patch
28 February, 2023
Patchstack Weekly #61: Should you use WordPress As a Headless CMS?
20 February, 2023
Patchstack Weekly #60: Should You Convert WordPress To a Static Site?
patchstack weekly
13 February, 2023
Patchstack Weekly #59: Do You Need Virtual Patches?
patchstack weekly
6 February, 2023
Patchstack Weekly #58: Do You Need security.txt?
patchstack weekly
1 February, 2023
Solving Unpredictable WP-Cron Problems, Addressing CVE-2023-22622
Security Advisory
23 January, 2023
Patchstack Weekly #56: How Can Developers Prove Their Plugins Are Secure?
patchstack weekly
16 January, 2023
Patchstack Weekly #55: How To Choose a Secure Web Hosting Provider?
patchstack weekly
10 January, 2023
Patchstack Weekly #54: How To Make Sure Your Sites Are Running Safe WordPress Plugins
patchstack weekly
3 January, 2023
Patchstack Weekly #53: Security Best Practice – Rotate Your Passwords
patchstack weekly
22 December, 2022
Patching an XSS Security Bug in “add-comments” Plugin
last patch
21 December, 2022
Patchstack Weekly #52: Will AI Change Web Security?
patchstack weekly
12 December, 2022
Patching an Arbitrary User Creation Security Bug in “thecartpress” Plugin
last patch
12 December, 2022
Patchstack Weekly #51: How One Vulnerability Affects Many
patchstack weekly
7 December, 2022
Patching a Broken Access Control Bug in the “account-manager-woocommerce” Plugin
last patch
5 December, 2022
Patchstack Weekly #50: When Hacks Come Back
patchstack weekly
29 November, 2022
Patching an Arbitrary Plugin Disablement Bug in the “webmaster-tools-verification” Plugin
last patch
21 November, 2022
Patchstack Weekly #49: Hunting Open-Source Security Bugs with SAST.
patchstack weekly
15 November, 2022
Patching Remote Code Execution in the ‘member-hero’ Plugin
last patch
14 November, 2022
Patchstack Weekly #48: Dealing with End of Life and Unsupported Open Source Projects.
patchstack weekly
8 November, 2022
Patching an Arbitrary File Download Vulnerability in wsm-downloader
last patch
7 November, 2022
Patchstack Weekly #47: What Is Type Juggling in PHP?
patchstack weekly
31 October, 2022
Patchstack Weekly #46: How To Protect WordPress Against Cross-Site Scripting Attacks (XSS)
patchstack weekly
24 October, 2022
Patchstack Weekly #45: What Is an Open Redirect Bug (and Why It’s Dangerous)?
patchstack weekly
17 October, 2022
WordPress 6.0.3 Security Release Summary
WordPress Security Vulnerabilities
17 October, 2022
Patchstack Weekly #44: Who You Gonna Call When Your Site Goes Down?
patchstack weekly
10 October, 2022
Patchstack Weekly #43: OWASP ZAP HUD, Breakpoints, and Lightbulbs.
patchstack weekly
3 October, 2022
Patchstack Weekly #42: What is the OWASP ZAP HUD?
patchstack weekly
26 September, 2022
Patchstack Weekly #41: Introduction to OWASP ZAP
patchstack weekly
owasp zap
19 September, 2022
Patchstack Weekly #40: The WordCamp US Roundup
patchstack weekly
WCUS
5 September, 2022
Patchstack Weekly #39: WordPress 6.0.2 Security Release Details
patchstack weekly
29 August, 2022
Patchstack Weekly #38: What is Your Time to Patch?
patchstack weekly
22 August, 2022
Patchstack Weekly #37: What Is a CVSS Score?
patchstack weekly
15 August, 2022
Patchstack Weekly #36: What Makes a Good Security Bug Patching Practice?
patchstack weekly
12 August, 2022
A “New” Bug – PHP Object Injection via Insecure Instantiation
WordPress Security Vulnerabilities
8 August, 2022
Patchstack Weekly #35: SVG XSS Reported in Gutenberg
patchstack weekly
WordPress Security Vulnerabilities
1 August, 2022
Patchstack Weekly #34: Why You Shouldn’t Use Nulled Plugins and Themes
patchstack weekly
25 July, 2022
Patchstack Weekly #33: What is Server Side Request Forgery (SSRF)?
WordPress Security Vulnerabilities
patchstack weekly
18 July, 2022
Patchstack Weekly #32: Are Millions of WordPress Sites Really Under Attack?
Website Hacking Statistics
patchstack weekly
15 July, 2022
How to Avoid Abandoned WordPress Plugins and Themes
abandonware
11 July, 2022
Patchstack Weekly #31: Why You Should Remove Unused Plugins
patchstack weekly
8 July, 2022
Patchstack::helpers [1] – Oliver Sild on Mentorship and Community
patchstack helpers
4 July, 2022
What is CSV Injection?
patchstack weekly
27 June, 2022
Patchstack Weekly #29: Interview with Security Researcher Rotem Bar
patchstack weekly
20 June, 2022
Patchstack Weekly #28: How To Choose Secure Plugins?
patchstack weekly
17 June, 2022
Ninja Forms Plugin Object Injection Security Bug Gets Patched
ninja forms
13 June, 2022
Patchstack Weekly #27: How to Update wp_options Securely.
wp options
WordPress plugins
WordPress development
WordPress Security Vulnerabilities
patchstack weekly
7 June, 2022
Patchstack Weekly, Week 23: What Makes A Good WordPress Community?
patchstack weekly
30 May, 2022
Patchstack Weekly, Week 22: How To Create An Incident Response Plan?
patchstack weekly
25 May, 2022
What’s New In WordPress 6.0?
WordPress 6.0
23 May, 2022
Patchstack Weekly, Week 21: Vulnerability News & Over-Communicating Security
patchstack weekly
16 May, 2022
Patchstack Weekly, Week 20: How To Communicate Security?
patchstack weekly
9 May, 2022
Patchstack Weekly, Week 19: Secure AJAX Endpoints & WordPress Vulnerabilities
patchstack weekly
2 May, 2022
Patchstack Weekly, Week 18: PHP Object Injection aka Insecure Deserialize
patchstack weekly
25 April, 2022
Patchstack Weekly, Week 17: Egoless Programming And Security Bugs
patchstack weekly
18 April, 2022
Patchstack Weekly, Week 16: WordPress Vulnerabilities And Secure Code Review
11 April, 2022
Patchstack Weekly, Week 15: WordPress Security History
patchstack weekly
4 April, 2022
Patchstack Weekly, Week 14: Five Steps To A Secure WordPress From Scratch
patchstack weekly
28 March, 2022
Patchstack Weekly, Week 13: A New Set Of WP-CLI Security Commands
patchstack weekly
21 March, 2022
Patchstack Weekly, Week 12: Secure WordPress File Uploads
patchstack weekly
14 March, 2022
Patchstack Weekly, Week 11: State of WordPress Security 2021
patchstack weekly
7 March, 2022
Patchstack Weekly, Week 10: Influx of New Vulnerabilities & Freemius Library
patchstack weekly
28 February, 2022
Patchstack Weekly, Week 9: Vulnerability News & Insecure Libraries
patchstack weekly
21 February, 2022
Patchstack Weekly, Week 07: Vulnerabilities & Vulnerability Risks
patchstack weekly
14 February, 2022
Patchstack Weekly, Week 06: Preparing for SQL Injection
patchstack weekly
3 February, 2022
Patchstack Weekly, Week 05: Open Source & Vulnerability Disclosure Policy
patchstack weekly
1 February, 2022
What Happens When a Vulnerability in WordPress Plugin Is Found?
patchstack weekly
24 January, 2022
Un-Patched Insecure WordPress Themes Update
Insecure WordPress Themes
20 January, 2022
Patchstack Weekly, Week 03: WordPress Vulnerabilities & Cross-Site Request Forgery
patchstack weekly
13 January, 2022
Patchstack Weekly, Week 02: Unpatched Vulnerabilities & Supporting Open Source
patchstack weekly
11 January, 2022
Authenticated Vulnerability in Unpatched WordPress Themes
unpatched WordPress themes
11 January, 2022
Patchstack App Tutorial: Writing Custom Firewall Rules
Custom Firewall Rules
6 January, 2022
Patchstack Weekly, Week 01: Vulnerability Roundup and Factors of Authentication
patchstack weekly
30 December, 2021
Patchstack Weekly, Week 52: Critical Plugin Vulnerability & Backlog of Unpatched Components
patchstack weekly
23 December, 2021
Patchstack Weekly, Week 51: WordPress Vulnerabilities And Code Stewardship
Code Stewardship
16 December, 2021
Patchstack Weekly, Week 50: WordPress Vulnerabilities And Log4j
patchstack weekly
9 December, 2021
Patchstack Weekly, Week 49: Gravatar Breach and Web History
Web history
2 December, 2021
Patchstack Weekly, Week 48: Dependency Confusion
Dependency confusion
25 November, 2021
Patchstack Weekly, Week 47: Incident Response & Vulnerability News
patchstack weekly
19 November, 2021
Patchstack Weekly, Week 46: Attackers Targeting Software Repositories
patchstack weekly
11 November, 2021
The Difference Between Authentication And Authorization
patchstack weekly
4 November, 2021
Welcome To The First Patchstack Weekly Update
patchstack weekly
Load more
WordPress security
Pricing & features
For care plans
For hosts
For plugin developers
NEW
Documentation
All solutions
WordPress security
Plugin auditing
Vulnerability database
API for developers
Bug bounty program
Active security programs
NEW
Patchstack
About us
Careers
Media kit
Articles & insight
Whitepaper 2022
Social
LinkedIn
Facebook
Join community
Twitter
Join Discord
© 2023 Patchstack
This website uses cookies.
Learn more.
Looks like your browser is blocking our support chat widget. Turn off adblockers and reload the page.
Reload page
close
chevron-right
chevron-down
twitter-square
facebook-square
linkedin-square
bars
cross
menu