Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
48,782
Mitigations
Mitigation rules
15,729
No official patch
13,009
In triage
1,348
Published soon
41
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Werkstatt
<= 4.7.2
Cross Site Request Forgery (CSRF) vulnerability
4.3
14 hours ago
Werkstatt
<= 4.7.2
Broken Access Control vulnerability
4.3
14 hours ago
Martfury - WooCommerce Marketplace WordPress Theme
<= 3.2.8
WordPress Martfury - WooCommerce Marketplace WordPress theme theme <= 3.2.8 - Broken Access Control vulnerability
4.3
15 hours ago
TheFox
<= 3.9.70
Cross Site Scripting (XSS) vulnerability
6.5
15 hours ago
Custom Field Template
<= 2.7.8
SQL Injection vulnerability
8.5
15 hours ago
Woffice
<= 5.4.31
Broken Access Control vulnerability
5.3
16 hours ago
Simple User Avatar
<= 4.9
Insecure Direct Object References (IDOR) vulnerability
4.3
18 hours ago
Embed Privacy
<= 1.12.3
Arbitrary File Deletion vulnerability
7.1
18 hours ago
Gutenverse
<= 3.8.0
Authenticated (Editor+) Stored Cross-Site Scripting vulnerability
5.9
3 days ago
Surbma | Infusionsoft Shortcode
<= 2.0.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
Spexo
<= 2.0.11
Missing Authorization to Authenticated (Subscriber+) Limited Plugin Activation vulnerability
4.3
3 days ago
Page Builder by SiteOrigin
<= 2.34.3
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
NEX-Forms
<= 9.2.2
Missing Authorization to Unauthenticated Sensitive Information Disclosure vulnerability
5.3
3 days ago
Restaurant Menu by MotoPress
<= 2.4.11
Broken Access Control vulnerability
4.3
3 days ago
BNE Testimonials
<= 2.0.8
Cross Site Scripting (XSS) vulnerability
6.5
3 days ago
Image Carousel
<= 1.0.0.41
Cross Site Scripting (XSS) vulnerability
6.5
3 days ago
Donation Thermometer
<= 2.2.7
Broken Access Control vulnerability
5.3
3 days ago
Auros Core
<= 5.3.1
Content Injection vulnerability
5.3
3 days ago
Eagle Booking
<= 1.3.4.3
Cross Site Request Forgery (CSRF) vulnerability
8.8
3 days ago
Forget About Shortcode Buttons
<= 2.1.3
Broken Access Control vulnerability
5.4
3 days ago
Load more