The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

Total49,300
Mitigations15,929
Stats
CVSS0
10
Affected software | Vulnerability
RiskDisclosed
safeinstall-cli< 0.10.2
NPM: SafeInstall agent guard shell parsing can miss raw package execution
8.8
1 day ago
tarteaucitronjs< 1.33.0
NPM: tarteaucitron: data-cookie attribute can be used to delete arbitrary cookies
4.3
2 days ago
@libp2p/gossipsub< 16.0.0
NPM: libp2p: CPU DoS via oversized IHAVE and IWANT control message arrays
7.5
2 days ago
morgan>= 1.2.0, <= 1.10.1
NPM: morgan vulnerable to Log Forging via unneutralized control characters in :remote-user
5.3
2 days ago
WP Google Maps Pro<= 10.1.02
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
NEX-Forms<= 9.2.2
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
Document Gallery<= 5.1.0
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
ICS Calendar<= 12.1.1
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
SupportCandy<= 3.4.8
Cross Site Scripting (XSS) vulnerability
6.5
2 days ago
WPZOOM Portfolio<= 1.4.29
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
Breakdance<= 2.7.1
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
Funnel Builder by FunnelKit<= 3.15.0.8
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
Dokan<= 5.0.6
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
All-in-One Video Gallery<= 4.8.5
Authenticated (Subscriber+) Server-Side Request Forgery vulnerability
6.4
2 days ago
WP Hotel Booking<= 2.3.1
Reflected Cross-Site Scripting vulnerability
7.1
2 days ago
Hide My WP Lite<= 1.3
Unauthenticated Path Traversal to Arbitrary File Read vulnerability
7.5
2 days ago
UsersWP<= 1.2.65
Authenticated (Subscriber+) Arbitrary File Deletion vulnerability
8.8
2 days ago
Super Forms<= 6.3.313
Unauthenticated Arbitrary File Upload vulnerability
10
2 days ago
LoginPress Pro<= 6.2.3
Unauthenticated Authentication Bypass vulnerability
8.1
2 days ago
LoginPress Pro<= 6.2.3
Unauthenticated Authentication Bypass vulnerability
8.1
2 days ago