The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing

Rated 4.9

Total46,698

MitigationsMitigation rules15,124

No official patch13,382

In triage1,529

Published soon2

StatsWordPress stats

CVSS0

Mitigation available

Exploited

Affected software \| Vulnerability	Risk	Disclosed
Event Tickets<= 5.27.5 Bypass Vulnerability vulnerability	6.5	2 days ago
WP Customer Area<= 8.3.4 Path Traversal vulnerability	8.8	3 days ago
App Builder<= 5.6.0 Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary User Avatar Modification vulnerability	5.3	3 days ago
Simple Link Directory<= 8.9.2 Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability	6.5	3 days ago
MaxiBlocks<= 2.1.9 Authenticated (Author+) Stored Cross-Site Scripting vulnerability	5.9	3 days ago
Advanced Classifieds & Directory Pro<= 3.2.4 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
Advanced scrollbar<= 1.1.3 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
Add Expires Headers & Optimized Minify<= 2.9.2 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
AiBud WP<= 1.7.2 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
GPT3 AI Content Writer<= 1.8.99 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
AidWP<= 3.2.6 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
WordPress Announcement & Notification Banner Plugin – Bulletin<= 3.12.1 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
Anti-Spam by Fullworks : GDPR Compliant Spam Protection<= 2.3.7 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
Free SSL Certificate Plugin, HTTPS Redirect, Renewal Reminder â Auto-Install Free SSL<= 4.5.0 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
Internal Linking for SEO traffic & Ranking – Auto internal links (100% automatic)<= 2.0.0 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
Automatic YouTube Gallery<= 2.5.5 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
Advanced WC Analytics<= 3.12.0 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
BP Better Messages<= 2.6.7 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
B Blocks<= 1.9.8 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago
Blockspare<= 3.2.6 Unauthenticated Reflected Cross-Site Scripting vulnerability	6.1	3 days ago