Skip to main content
JavaScript is disabled in your browser. Please enable JavaScript for a better experience.
Pricing
Solutions
WordPress security
For hosts
Managed VDP
Bug bounty
Plugin auditing
Vulnerability database
Resources
Case studies
Security advisories
WordPress security 101
2025 security whitepaper
CRA compliance guide
Login
Start trial
Latest
WordPress Security
Virtual Patches
Bug Bounty
WordPress Security 101
Events
WordPress how-to's
Webinars
Security Suite
Plugin Recommendations
Security Advice
Security Advisories
Patchstack News
Patchstack how-to's
Security Advisories
Author's position will be here
Security Advisories
Latest
WordPress Security 101
Plugin Recommendations
Security Advisories
Patchstack News
Case Studies
Bug Bounty
Search for:
22 May, 2024
Critical Vulnerability Patched in UserPro Plugin
privilege escalation
account takeover
UserPro
Critical Vulnerability
17 May, 2024
Exploring the Unknown: Beneath the Surface of Unpatched WordPress SSRF
WordPress core
ssrf
14 May, 2024
Critical Vulnerabilities Found in XStore Theme and Plugin
Critical Vulnerability
account takeover
php object injection
SQL Injection
arbitrary option update
XStore
7 May, 2024
High Priority Vulnerabilities Patched in Uncode Core Plugin
plugin
privilege escalation
Uncode
arbitrary file deletion
4 April, 2024
Unpatched Authenticated RCE in Oxygen and Breakdance Builder
rce
oxygen
breakdance
remote code execution
privilege escalation
3 April, 2024
Critical Vulnerabilities Patched in REHub Theme and Plugin
Critical Vulnerability
SQL Injection
REHub
Local File Inclusion
19 March, 2024
Critical Vulnerabilities Patched in WordPress Automatic Plugin
Critical Vulnerability
ssrf
SQL Injection
Automatic
Arbitrary File Download
12 March, 2024
Critical Vulnerability Found in GOTMLS Plugin
Critical Vulnerability
rce
27 February, 2024
XSS Vulnerability in LiteSpeed Cache Plugin Affecting 4+ Million Sites
xss
LiteSpeed Cache
19 February, 2024
Critical RCE Patched in Bricks Builder Theme
Bricks Builder
31 January, 2024
WordPress 6.4.3 Security Release
wordpress
9 January, 2024
AI Engine Plugin Affected by Critical Vulnerability
arbitrary file upload
AI Engine
Critical Vulnerability
« Previous
1
2
3
4
5
6
…
10
Next »
Load more
Monthly security advice
Get the latest WordPress security intelligence delivered to your inbox.
NEW
: Get started with 5 bite-sized security lessons.
Email Signup
Email
Subscribe
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
Compliance (CRA)
For researchers
Bug bounty
Log in
Guidelines
Leaderboard
Learn
Discord
Resources
Vulnerability database
Whitepaper 2025
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2025
Patchstack
DPA
Privacy Policy
Terms & Conditions
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
Compliance (CRA)
For researchers
Bug bounty
Log in
Guidelines
Leaderboard
Learn
Discord
Resources
Vulnerability database
Whitepaper 2025
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2025
Patchstack
DPA
Privacy Policy
Terms & Conditions
Looks like your browser is blocking our support chat widget. Turn off adblockers and reload the page.
Reload page
close
chevron-down
bars
cross
menu
