Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
46,940
Mitigations
Mitigation rules
15,242
No official patch
12,861
In triage
1,590
Published soon
4
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Sentence To SEO (keywords, description and tags)
<= 1.0
Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability
6.1
11 hours ago
Faces of Users
<= 0.0.3
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
11 hours ago
Presto Player
<= 4.1.3
Broken Access Control vulnerability
4.3
13 hours ago
AI Engine
3.4.9-3.4.9
Authenticated (Subscriber+) Privilege Escalation vulnerability
8.8
1 day ago
Contest Gallery Pro
<= 29.0.1
Privilege Escalation vulnerability
9.8
2 days ago
Classified Listing
<= 5.3.8
Arbitrary File Download vulnerability
6.5
2 days ago
GiveWP
<= 4.14.5
Cross Site Scripting (XSS) vulnerability
7.1
3 days ago
WP Document Revisions
<= 3.8.1
Broken Access Control vulnerability
7.5
3 days ago
myCred
<= 3.0.4
Cross Site Scripting (XSS) vulnerability
6.5
4 days ago
Hydra Booking
<= 1.1.41
Broken Access Control vulnerability
7.3
4 days ago
Essential Chat Support
<= 1.0.1
Missing Authorization to Unauthenticated Settings Reset vulnerability
5.3
4 days ago
Smart Coupons for WooCommerce
< 2.3.0
Broken Access Control vulnerability
7.5
4 days ago
Advanced Custom Fields: Font Awesome Field
<= 5.0.2
Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability
6.5
4 days ago
Smartcat Translator for WPML
<= 3.1.77
Missing Authorization to Unauthenticated Plugin Settings Update vulnerability
6.5
4 days ago
Frontend Admin by DynamiApps
<= 3.28.36
Unauthenticated Privilege Escalation vulnerability
7.2
4 days ago
Quick Playground
<= 1.3.3
Unauthenticated Path Traversal to Arbitrary File Read vulnerability
7.5
4 days ago
Receive Notifications After Form Submitting – Form Notify for Any Forms
<= 1.1.10
Unauthenticated Authentication Bypass vulnerability
9.8
4 days ago
Multicollab – Google Doc-Style Editorial Commenting for WordPress
<= 5.2
Missing Authorization to Authenticated (Subscriber+) Collaboration Comment vulnerability
4.3
4 days ago
Classified Listing
<= 5.3.10
Missing Authorization to Authenticated (Subscriber+) Arbitrary Modification vulnerability
4.3
5 days ago
Notify Odoo
<= 1.0.1
Cross-Site Request Forgery to Settings Update vulnerability
4.3
5 days ago
Load more