Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
46,430
Mitigations
Mitigation rules
15,049
No official patch
13,386
In triage
1,421
Published soon
30
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
Avada
< 7.13.2
Cross Site Request Forgery (CSRF) vulnerability
4.3
8 hours ago
Order Minimum/Maximum Amount Limits for WooCommerce
<= 4.6.4
Cross Site Scripting (XSS) vulnerability
6.5
8 hours ago
Maximum Products per User for WooCommerce
<= 4.3.6
Cross Site Scripting (XSS) vulnerability
6.5
8 hours ago
Breaking News WP
<= 1.3
Missing Authorization to Authenticated (Subscriber+) Local File Inclusion/Read vulnerability
7.5
12 hours ago
Simple Random Posts Shortcode
<= 0.3
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
12 hours ago
Emailchef
<= 3.5.1
Missing Authorization to Authenticated (Subscriber+) Arbitrary plugin Settings Deletion vulnerability
5.4
14 hours ago
WP Responsive Popup + Optin
<= 1.4
Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability
7.1
14 hours ago
Create DB Tables
<= 1.2.1
Missing Authorization to Authenticated (Subscriber+) Arbitrary Database Table Creation/Deletion vulnerability
9.1
14 hours ago
Sendmachine for WordPress
<= 1.0.20
Unauthenticated SMTP Hijack to Privilege Escalation vulnerability
9.8
15 hours ago
Short Comment Filter
<= 2.2
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
Private WP suite
<= 0.4.1
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
Real Estate Pro
<= 1.0.9
Authenticated (Admin+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
HTTP Headers
<= 1.19.2
Authenticated (Administrator+) CRLF Injection vulnerability
5.5
1 day ago
HTTP Headers
<= 1.19.2
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
TextP2P Texting Widget
<= 1.7
Cross-Site Request Forgery to Settings Update vulnerability
4.3
1 day ago
Kcaptcha
<= 1.0.1
Cross-Site Request Forgery to Settings Update vulnerability
4.3
1 day ago
Call To Action Plugin
<= 3.1.3
Cross-Site Request Forgery vulnerability
4.3
1 day ago
mCatFilter
<= 0.5.2
Cross-Site Request Forgery vulnerability
4.3
1 day ago
DX Unanswered Comments
<= 1.7
Cross-Site Request Forgery vulnerability
4.3
1 day ago
Sentence To SEO (keywords, description and tags)
<= 1.0
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
Load more