Skip to main content
JavaScript is disabled in your browser. Please enable JavaScript for a better experience.
Pricing
Case studies
Login
Start trial
Latest
WordPress Security
Virtual Patches
Bug Bounty
WordPress Security 101
Events
WordPress how-to's
Webinars
Security Suite
Plugin Recommendations
Supply Chain Attack
Security Advice
Security Advisories
Patchstack News
Patchstack how-to's
Security Advisories
Author's position will be here
Security Advisories
Latest
WordPress Security 101
Plugin Recommendations
Security Advisories
Patchstack News
Case Studies
Bug Bounty
Search for:
12 December, 2023
Multiple Vulnerabilities Patched in Themify Ultra Theme
themify
settings change
privilege escalation
arbitrary file upload
php object injection
theme
8 December, 2023
Critical Vulnerability in Elementor Affecting 5+ Million Websites
Critical Vulnerability
Elementor
arbitrary file upload
6 December, 2023
WordPress 6.4.2 Security Release
wordpress
3 December, 2023
Fake CVE Phishing Campaign Tricks WordPress Users Into Installing Malware
CVE-2023-45124
CVE
29 November, 2023
Thrive Theme Vulnerability: Dismiss Tooltip to Privilege Escalation
privilege escalation
thrive
theme
15 November, 2023
Authenticated Stored XSS in WooCommerce and Jetpack Plugin
xss
woocommerce
jetpack
8 November, 2023
Arbitrary Attachment Render to XSS in Elementor Plugin
xss
Elementor
13 October, 2023
WordPress Core 6.3.2 Security Update - Technical Advisory
WordPress core
security release
12 October, 2023
Pre-Auth Arbitrary File Upload in User Submitted Posts Plugin
Critical Vulnerability
27 September, 2023
Two Paths to Privilege Escalation Vulnerability In The Simple Membership Plugin
privilege escalation
simple membership
15 September, 2023
Authenticated Privilege Escalation Vulnerability in Essential Addons for Elementor
privilege escalation
Essential Addons for Elementor
6 September, 2023
Unauthenticated PHP Object Injection in Flatsome Theme <= 3.17.5
php object injection
flatsome
« Previous
1
…
4
5
6
7
8
…
11
Next »
Load more
Monthly security advice
Get the latest WordPress security intelligence delivered to your inbox.
NEW
: Get started with 5 bite-sized security lessons.
Email Signup
Email
Subscribe
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
Compliance (CRA)
For researchers
Bug bounty
Log in
Guidelines
Leaderboard
Learn
Discord
Resources
Vulnerability database
Whitepaper 2025
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2025
Patchstack
DPA
Privacy Policy
Terms & Conditions
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
Compliance (CRA)
For researchers
Bug bounty
Log in
Guidelines
Leaderboard
Learn
Discord
Resources
Vulnerability database
Whitepaper 2025
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
Looks like your browser is blocking our support chat widget. Turn off adblockers and reload the page.
Reload page
close
chevron-down
bars
cross
menu
