The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing
Rated 4.9
Total47,553
Mitigations15,324
Stats
CVSS0
10
Affected software | Vulnerability
RiskDisclosed
Nyla<= 1.7
Arbitrary Shortcode Execution vulnerability
5.3
3 hours ago
NanoCare< 1.2.2
Broken Access Control vulnerability
5.4
12 hours ago
Newses<= 2.0.0.77
Broken Access Control vulnerability
5.4
13 hours ago
FastX<= 1.0.2
Missing Authorization to Authenticated (Subscriber+) Limited Plugin Installation and Activation vulnerability
4.3
4 days ago
The7<= 14.3.2
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
14/05/2026
Avante< 3.0.5
Reflected Cross Site Scripting (XSS) vulnerability
7.1
08/05/2026
Betheme<= 28.4
Authenticated (Author+) Arbitrary File Upload to Remote Code Execution vulnerability
9.1
06/05/2026
Betheme<= 28.4
Authenticated (Contributor+) Arbitrary File Deletion vulnerability
6.5
04/05/2026
Total<= 2.2.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
01/05/2026
Woostify<= 2.5.0
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
27/04/2026
AI Lab< 5.4.2
PHP Object Injection vulnerability
9.8
27/04/2026
Kapee< 1.7.1
Cross Site Scripting (XSS) vulnerability
7.1
23/04/2026
Learnify<= 1.15.0
Local File Inclusion vulnerability
8.1
23/04/2026
Roam<= 2.1
Local File Inclusion vulnerability
8.1
23/04/2026
Monki<= 2.0.5
Local File Inclusion vulnerability
8.1
23/04/2026
Bricks Builder<= 2.2
Cross Site Scripting (XSS) vulnerability
7.1
23/04/2026
Metro Magazine<= 1.4.1
Broken Access Control vulnerability
6.5
23/04/2026
Avada< 7.13.2
Cross Site Request Forgery (CSRF) vulnerability
4.3
22/04/2026
Alukas< 3.0.0
PHP Object Injection vulnerability
8.1
22/04/2026
Kapee< 1.7.0
PHP Object Injection vulnerability
8.1
22/04/2026