← Back to All Articles 

Security Advisories

Authenticated PHP Object Injection in User Registration Plugin
Advisory: Critical WooCommerce Payments Privilege Escalation Vulnerability
Subscriber+ Path Traversal Leading to Local File Inclusion in OceanWP Theme
PSA: Houzez Theme Unauthenticated Privilege Escalation Vulnerability Exploited in The Wild
Authenticated SSRF & Arbitrary File Read in Shortcodes Ultimate Plugin “Unsafe Features”
Authenticated Path Traversal Leading to Local File Inclusion in Rank Math SEO Plugin
Multiple Authenticated SQL Injection Fixed In WP Statistics Plugin Version
Solving Unpredictable WP-Cron Problems, Addressing CVE-2023-22622
Multiple Critical Vulnerabilities Fixed In LearnPress Plugin Version
Multiple Vulnerabilities Affecting Multiple MainWP Extensions
WordPress 6.0.3 Security Release Summary
A “New” Bug – PHP Object Injection via Insecure Instantiation
Ninja Forms Plugin Object Injection Security Bug Gets Patched
Critical Vulnerability Fixed In Elementor Plugin Version 3.6.3
Critical Vulnerability Fixed In Responsive Menu Plugin
Critical Vulnerability Fixed In Essential Addons for Elementor Plugin
Authenticated Vulnerability in Unpatched WordPress Themes
Technical Advisory: WordPress Core 5.8.3 Security Update
Extremely Critical Vulnerability In The Apache Log4j Logging Library
An In-Depth Analysis Of The WP-VCD Malware
Multiple Security Vulnerabilities Fixed In Hide My WP by wpWave
Critical Security Vulnerability Fixed In WP Reset PRO
3 WordPress Security Issues Fixed In Version 5.8.1
Analyzing The Photo Gallery by 10Web SQL Injection Vulnerability
Multiple Vulnerabilities In MailerLite Sign Up Forms
Critical WooCommerce SQL Injection Vulnerability Details
Social Warfare XSS and RCE Vulnerabilities and Attack Data
Critical Vulnerability in Easy WP SMTP WordPress Plugin
Multiple Vulnerabilities In WordPress Plugin Popup Builder
Bitcoin Ransom Scam Targeting Website Owners
Multiple Vulnerabilities In Discount Rules for WooCommerce Plugin
Elementor PRO Vulnerability And Attack Analysis
Critical Issue In ThemeGrill Demo Importer
Critical Vulnerability In InfiniteWP Client And WP Time Capsule
📣 Get latest WordPress security insight from our Patchstack Weekly series

Find out if your websites are vulnerable

Looks like your browser is blocking our support chat widget. Turn off adblockers and reload the page.