Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
49,275
Mitigations
Mitigation rules
15,241
No official patch
13,643
In triage
1,561
Published soon
7
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Advanced Custom Fields: Font Awesome Field
<= 5.0.2
Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability
6.5
1 hour ago
Smartcat Translator for WPML
<= 3.1.77
Missing Authorization to Unauthenticated Plugin Settings Update vulnerability
6.5
2 hours ago
Frontend Admin by DynamiApps
<= 3.28.36
Unauthenticated Privilege Escalation vulnerability
7.2
2 hours ago
Quick Playground
<= 1.3.3
Unauthenticated Path Traversal to Arbitrary File Read vulnerability
7.5
2 hours ago
Receive Notifications After Form Submitting – Form Notify for Any Forms
<= 1.1.10
Unauthenticated Authentication Bypass vulnerability
9.8
2 hours ago
Classified Listing
<= 5.3.10
Missing Authorization to Authenticated (Subscriber+) Arbitrary Modification vulnerability
4.3
16 hours ago
Notify Odoo
<= 1.0.1
Cross-Site Request Forgery to Settings Update vulnerability
4.3
17 hours ago
NEX-Forms
<= 9.1.12
Authenticated (Administrator+) SQL Injection vulnerability
7.6
17 hours ago
Essential Addons for Elementor
<= 6.5.13
Authenticated (Author+) Limited Privilege Escalation vulnerability
6.5
1 day ago
ManageWP Worker
<= 4.9.31
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
1 day ago
Interactive Geo Maps
<= 1.6.27
Interactive Geo Maps plugin <= 1.6.27 - Interactive Geo Maps <= 1.6.27 - Reflected Cross-Site Scripting vulnerability
7.1
1 day ago
Taskbuilder
<= 5.0.6
Authenticated (Subscriber+) Time-Based Blind SQL Injection vulnerability
8.5
1 day ago
InfusedWoo Pro
<= 5.1.2
Unauthenticated Arbitrary File Read vulnerability
7.2
1 day ago
InfusedWoo Pro
<= 5.1.2
Unauthenticated Missing Authorization to Arbitrary Post Deletion vulnerability
9.1
1 day ago
InfusedWoo Pro
<= 5.1.2
Authenticated (Subscriber+) Missing Authorization to Privilege Escalation vulnerability
8.8
1 day ago
InfusedWoo Pro
<= 5.1.2
Unauthenticated Missing Authorization to Privilege Escalation vulnerability
9.8
1 day ago
Motors
<= 1.4.107
Authenticated (Subscriber+) Arbitrary File Deletion vulnerability
8.1
1 day ago
FluentForm
<= 6.2.0
Authenticated (Subscriber+) Authorization Bypass vulnerability
8.2
1 day ago
FluentForm
<= 6.1.21
Authenticated (Subscriber+) Authorization Bypass vulnerability
8.2
1 day ago
Career Section
<= 1.7
Unauthenticated Arbitrary File Upload vulnerability
10
1 day ago
Load more