Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
49,336
Mitigations
Mitigation rules
15,939
No official patch
13,056
In triage
1,341
Published soon
0
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Genolve
<= 5.0.5
Authenticated (Contributor+) Incorrect Authorization to Privilege Escalation vulnerability
8.8
8 hours ago
bbp style pack
<= 6.4.5
Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability
6.5
8 hours ago
CorvusPay WooCommerce Payment Gateway
<= 2.7.4
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
9 hours ago
W3 Total Cache
<= 2.9.4
Unauthenticated Arbitrary File Read vulnerability
7.5
9 hours ago
WordPress CTA
<= 2.2.2
Unauthenticated Time-Based Blind SQL Injection vulnerability
9.3
9 hours ago
Aimogen Pro
<= 2.8.4
WordPress Aimogen Pro - All-in-One AI Content Writer, Editor, ChatBot & Automation Toolkit plugin <= 2.8.4 - All-in-One AI Content Writer, Editor, ChatBot & Automation Toolkit <= 2.8.4 - Unauthenticated Privilege Escalation vulnerability
9.8
9 hours ago
Ultimate Auction Pro
<= 2.4.5
Reflected XSS via uwa_manage_auctions vulnerability
7.1
1 day ago
Ultimate Auction Pro
<= 2.4.5
Reflected XSS via uwa_auctions_bids_list vulnerability
7.1
1 day ago
ICS Calendar
<= 12.0.9
Reflected Cross-Site Scripting vulnerability
7.1
1 day ago
Booking Package
<= 1.7.20
Unauthenticated SQL Injection vulnerability
9.3
1 day ago
WP Customer Area
<= 8.3.5
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
FoodBook Lite – Online Food Ordering System
<= 1.5.6
Missing Authorization to Unauthenticated User Registration vulnerability
5.3
1 day ago
News Kit Elementor Addons
<= 1.4.6
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
Fusion Builder
<= 3.15.5
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
Smart Slider 3
<= 3.5.1.37
Missing Authorization to Authenticated (Contributor+) Sensitive Information Exposure vulnerability
4.3
1 day ago
Academy LMS
<= 3.8.0
Authenticated (Subscriber+) Insecure Direct Object Reference vulnerability
4.3
1 day ago
ووسلام – همگام سازی ووکامرس و باسلام
<= 1.9.1
Cross Site Request Forgery (CSRF) vulnerability
7.1
2 days ago
گرویتی فرم فارسی
<= 3.0.2
SQL Injection vulnerability
7.6
2 days ago
WooCommerce Bulk Edit Products – WP Sheet Editor
<= 1.8.21
Broken Access Control vulnerability
4.9
2 days ago
safeinstall-cli
< 0.10.2
NPM: SafeInstall agent guard shell parsing can miss raw package execution
8.8
3 days ago
Load more