Skip to main content
JavaScript is disabled in your browser. Please enable JavaScript for a better experience.
Pricing
Solutions
WordPress security
Enterprise API
Managed VDP
Bug Bounty
Plugin auditing
Vulnerability database
Login
Start trial
Latest
WordPress how-to's
Webinars
Plugin Recommendations
WordPress Security
Virtual Patches
Bug Bounty
WordPress Security 101
Events
Security Advice
Security Advisories
Patchstack News
Patchstack how-to's
Featured
Author's position will be here
Featured
Latest
WordPress Security 101
Plugin Recommendations
Security Advisories
Patchstack News
Case Studies
Bug Bounty
Search for:
17 April, 2025
Critical RomethemeKit For Elementor Plugin Vulnerability Patched
Critical Vulnerability
Elementor
rce
10 April, 2025
Critical SureTriggers Plugin Vulnerability Exploited within 4 hours
Critical Vulnerability
SureTriggers
Rest API
27 March, 2025
New Year, New Threats: Q1 2025's Most Exploited WordPress Vulnerabilities
WordPress security
vpatch
20 March, 2025
Critical LFI to RCE Vulnerability in WP Ghost Plugin Affecting 200k+ Sites
Critical Vulnerability
rce
lfi
alliance
5 March, 2025
Unauthenticated Arbitrary File Upload Vulnerability in Chaty Pro Plugin
Critical Vulnerability
arbitrary file upload
chaty-pro
Malicious File Upload
24 February, 2025
Reflected XSS Patched in Essential Addons for Elementor Affecting 2+ Million Sites
Essential Addons for Elementor
Elementor
xss
20 February, 2025
Critical Privilege Escalation Patched in KLEO Theme's Plugin
Critical Vulnerability
privilege escalation
ENVATO
5 February, 2025
Rare Case of Privilege Escalation in ASE Plugin Affecting 100k+ Sites
Critical Vulnerability
privilege escalation
29 January, 2025
Privilege Escalation Vulnerability Patched in Better Find and Replace Plugin
privilege escalation
zeroday
better find and replace
22 January, 2025
Unauthenticated Privilege Escalation Vulnerability in RH - Real Estate Theme
Critical Vulnerability
privilege escalation
ENVATO
10 January, 2025
Critical Vulnerability Patched in GiveWP Plugin
Critical Vulnerability
php object injection
Zeroday bounties
zeroday
givewp
8 January, 2025
Critical Vulnerabilities Found in Fancy Product Designer Plugin
Critical Vulnerability
arbitrary file upload
SQL Injection
ENVATO
1
2
3
…
13
Next »
Load more
Monthly security advice
Get the latest WordPress security intelligence delivered to your inbox.
NEW
: Get started with 5 bite-sized security lessons.
Email Signup
Email
Subscribe
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
For researchers
Bug bounty
Log in
Guidelines
Leaderboard
Learn
Discord
Resources
Vulnerability database
Whitepaper 2025
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2025
Patchstack
DPA
Privacy Policy
Terms & Conditions
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
For researchers
Bug bounty
Log in
Guidelines
Leaderboard
Learn
Discord
Resources
Vulnerability database
Whitepaper 2025
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2025
Patchstack
DPA
Privacy Policy
Terms & Conditions
Looks like your browser is blocking our support chat widget. Turn off adblockers and reload the page.
Reload page
close
chevron-down
bars
cross
menu
