Pricing

WordPress security

Instantly fix and mitigate vulnerabilities

Plugin auditing

Paid auditing for WordPress vendors

Managed VDP

Start a security program for your plugin

Bug Bounty

Join the community and earn bounties

Enterprise API

At scale monitoring and vPatching for hosts

Vulnerability database

The latest WordPress security intelligence
Login
Start FREE
🎉 Read our newly released State of WordPress Security 2024 whitepaper!

Latest in Wordpress security

See latest advisories

Recently exploited vulnerabilities

Get more with our API

Plugin

InstaWP Connect Unauthenticated Arbitrary File Upload vulnerability

vPatch available
Vulnerability exploited
Patch priority: high Not fixed

12 April, 2024

Theme

Responsive Missing Authorization to HMTL Injection vulnerability

vPatch available
Vulnerability exploited
Patch priority: medium Not fixed

1 April, 2024

Plugin

Ultimate Member Unauthenticated Stored Cross-Site Scripting vulnerability

vPatch available
Vulnerability exploited
Patch priority: medium Not fixed

8 March, 2024

Plugin

Ultimate Member Unauthenticated SQL Injection vulnerability

vPatch available
Vulnerability exploited
Patch priority: high Not fixed

23 February, 2024

Plugin

WooCommerce Easy Checkout Field Editor, Fees & Discounts Unauthenticated Arbitrary File Upload vulnerability

Badge vPatch available
Vulnerability exploited
Patch priority: high Not fixed

14 February, 2024

WordPress vulnerability statistics

Vulnerabilities published

5948

Total number of vulnerabilities

4341

Originally published by Patchstack

Most common security bugs published

Patch status of published vulnerabilities

Vulnerability breakdown by CVSS severity

Some CVSS data is unavailable. Breakdown is for existing data.

Vulnerability breakdown by priority

Patchstack Priority helps prioritize vulnerbilities by the likelyhood of becoming exploited.

Vulnerability breakdown by software type

Top 10 WordPress Ethical Hackers

Full bug bounty leaderboard
#
Contributor
Profile
Valid reports
Rafie Muhammad (Patchstack)
1968
Abdi Pranata
507
István Márton
484
4
Mika
483
5
Rio Darmawan
372
6
yuyudhn
306
7
Dave Jong (Patchstack)
216
8
Nguyen Xuan Chien
214
9
thiennv
209
10
LEE SE HYOUNG (hackintoanetwork)
183

Protection

Pricing WordPress For agencies Standard API Documentation

Solutions

WordPress security Plugin auditing Managed VDP Bug bounty Enterprise API

Bug bounty

Leaderboard Security programs Guidelines Report

Resources

Vulnerability Database Vulnerability Statistics Whitepaper 2024NEW Articles Join Discord

Patchstack

About StoreNEW Careers Media kit LinkedIn Facebook X
© 2024 Patchstack DPA Privacy Policy Terms & Conditions

Protection

Pricing WordPress For agencies Standard API Documentation

Solutions

WordPress security Plugin auditing Managed VDP Bug bounty Enterprise API

Bug bounty

Leaderboard Security programs Guidelines Report

Resources

Vulnerability Database Vulnerability Statistics Whitepaper 2024NEW Articles Join Discord

Patchstack

About StoreNEW Careers Media kit LinkedIn Facebook X
Mobile Menu

Let us know if we have missed a vulnerability reported elsewhere

Mobile Menu Close

Thank you for contributing!

Close Mobile Menu