Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
46,889
Mitigations
Mitigation rules
15,211
No official patch
13,394
In triage
1,547
Published soon
10
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Master Addons for Elementor
<= 2.0.7.2
Unauthenticated Reflected Cross-Site Scripting vulnerability
6.1
01/05/2026
Instant Popup Builder
<= 1.1.7
Unauthenticated Arbitrary Shortcode Execution via 'token' Parameter vulnerability
5.3
19/03/2026
Popup Builder
<= 4.4.2
Improper Authorization to Unauthenticated Subscriber Removal via Predictable Tokens vulnerability
5.3
18/02/2026
Hello Bar Popup Builder
<= 1.5.1
Cross Site Scripting (XSS) vulnerability
6.5
18/02/2026
PopupKit
<= 2.2.0
Unauthenticated SQL Injection via Multiple REST API Endpoints vulnerability
7.6
04/02/2026
ConvertForce Popup Builder
<= 0.0.7
Stored Cross-Site Scripting via entrance_animation vulnerability
5.9
30/01/2026
Popup Builder
<= 4.4.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
13/12/2025
Popup Builder
<= 1.1.37
Missing Authorization to Authenticated (Subscriber+) Arbitrary plugin Settings Reset vulnerability
5.4
13/12/2025
PopupKit
<= 2.1.4
Unauthenticated Server-Side Request Forgery vulnerability
7.2
24/10/2025
WP Popup Builder
<= 1.3.8
Sensitive Data Exposure vulnerability
5.3
27/09/2025
Popup Builder
<= 1.1.35
Local File Inclusion Vulnerability
7.5
22/04/2025
Popup Builder
<= 1.1.33
Cross Site Scripting (XSS) vulnerability
6.5
22/02/2025
Pretty Simple Popup Builder
<= 1.0.9
Stored Cross Site Scripting (XSS) vulnerability
5.9
03/01/2025
Popup Builder
< 4.3.5
Admin+ Stored XSS vulnerability
5.9
12/12/2024
Matix Popup Builder
<= 1.0.0
Arbitrary Option Update to Privilege Escalation vulnerability
9.8
11/11/2024
WP Popup Builder
<= 1.3.5
Unauthenticated Arbitrary Shortcode Execution vulnerability
7.9
15/10/2024
Depicter Slider
<= 3.2.2
Cross Site Scripting (XSS) vulnerability
5.9
30/09/2024
Popup Builder
<= 4.3.6
Sensitive Information Exposure via Imported Subscribers CSV File vulnerability
5.3
29/08/2024
Depicter Slider
<= 3.1.2
Cross Site Scripting (XSS) vulnerability
5.9
07/08/2024
Pretty Simple Popup Builder
<= 1.0.9
Cross Site Scripting (XSS) vulnerability
5.9
22/07/2024
Load more