The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing
Rated 4.9
Total39,500
Mitigations14,743
Stats
CVSS0
10
Affected software | Vulnerability
RiskDisclosed
Post Duplicator<= 3.0.8
Missing Authorization to Authenticated (Contributor+) Protected Post Meta Insertion via 'customMetaData' Parameter vulnerability
4.3
Feb 24, 2026
FastDup<= 2.7.1
WordPress FastDup - Fastest WordPress Migration & Duplicator plugin <= 2.7.1 - Missing Authorization to Authenticated (Contributor+) Backup Creation and Download vulnerability
8.8
Feb 12, 2026
WP Quick Post Duplicator<= 2.1
Broken Access Control vulnerability
4.3
Jan 8, 2026
MultiSite Clone Duplicator<= 1.5.3
Cross Site Scripting (XSS) vulnerability
7.1
Aug 29, 2025
Easy Post Duplicator<= 1.0.1
Reflected Cross Site Scripting (XSS) vulnerability
7.1
Apr 9, 2025
Easy Post Duplicator<= 1.0.1
SQL Injection vulnerability
8.5
Apr 9, 2025
Theme Duplicator<= 1.1
Cross Site Request Forgery (CSRF) vulnerability
4.3
Apr 1, 2025
Labinator Content Types Duplicator<= 1.1.3
Cross Site Request Forgery (CSRF) vulnerability
4.3
Apr 1, 2025
Menu Duplicator<= 1.0
Broken Access Control vulnerability
4.3
Mar 24, 2025
WP Bulk Post Duplicator<= 1.2
Cross Site Request Forgery (CSRF) vulnerability
4.3
Mar 11, 2025
Theme File Duplicator<= 1.3
Arbitrary File Download vulnerability
6.5
Feb 21, 2025
Theme File Duplicator<= 1.3
Arbitrary File Upload vulnerability
9.9
Feb 21, 2025
Post Duplicator<= 2.35
Broken Access Control vulnerability
4.3
Jan 24, 2025
Post Duplicator<= 2.36
Authenticated (Contributor+) Protected Post Disclosure vulnerability
5.3
Jan 10, 2025
Duplicator<= 1.5.9
Full Path Disclosure vulnerability
5.3
Jul 11, 2024
WP STAGING – Backup Duplicator & Migration< 3.5.0
Admin+ SSRF vulnerability
5.5
May 31, 2024
WP STAGING – Backup Duplicator & Migration<= 3.4.3
Authenticated (Admin+) Arbitrary File Upload vulnerability
7.2
May 29, 2024
WP STAGING – Backup Duplicator & Migration<= 3.4.3
Sensitive Information Exposure via Log File vulnerability
5.3
Apr 26, 2024
WP STAGING – Backup Duplicator & Migration< 3.4.0
Admin+ Stored XSS vulnerability
5.9
Apr 17, 2024
Page Duplicator<= 0.1.1
Missing Authorization to Unauthenticated Post/Page Duplication vulnerability
5.3
Feb 28, 2024