Recently exploited vulnerabilities

Get more with our API

WordPress vulnerability statistics

General WordPress security vulnerability statistics powered by the Patchstack Vulnerability Database.

Vulnerabilities disclosed via Patchstack

7004By Patchstack Alliance
2796By other sources

Most common security vulnerabilities

How to fix common vulnerabilities
  • #1Cross-Site Scripting (XSS)
    41.52%
  • #2Other vulnerabilities
    20.68%
  • #3Cross-Site Request Forgery (CSRF)
    13.44%
  • #4Broken Access Control
    13.32%
  • #5SQL Injection
    5.93%
  • #6Sensitive Data Exposure
    2.69%
  • #7Arbitrary File Upload
    2.42%
  • Disclosed by
    Patchstack
    Other sources

Fixed status of published vulnerabilities

Not fixed
#474648%
Fixed
#505452%

Breakdown by software type

Plugin
#889991%
Theme
#8999%
Core
#20%

Breakdown by patch priority

High (Resolve immediately)
#185619%
Medium (Resolve in 14 days)
#185620%
Low (Resolve in 30 days)
#185661%

Breakdown by CVSS severity

Critical (9.0-10.0)
#7998%
High (7.0-8.9)
#384939%
Medium (4.0-6.9)
#512352%
Low (0.1-3.9)
#290%

Top security researchers by contributions

See leaderboard

#

Contributor

Researcher profile

Valid reports