Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
48,602
Mitigations
Mitigation rules
15,649
No official patch
12,995
In triage
1,460
Published soon
26
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Cornerstone
< 7.8.9
Broken Access Control vulnerability
4.3
3 hours ago
Site Kit by Google
< 1.176.0
Editor+ Email Reporting Settings Update vulnerability
3.8
4 hours ago
AI Share & Summarize
< 2.0.4
Contributor+ Stored XSS via title_style Shortcode Attribute vulnerability
6.5
4 hours ago
Infility Global
< 2.15.20
Editor+ SQL Injection via orderby Parameter vulnerability
8.5
4 hours ago
Essential Blocks for Gutenberg
<= 6.1.4
Page Builder for Gutenberg Blocks & Patterns plugin <= 6.1.4 - Page Builder for Gutenberg Blocks & Patterns <= 6.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
16 hours ago
WP Meta SEO
<= 4.5.18
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
17 hours ago
URL Preview
<= 1.0
Unauthenticated Server-Side Request Forgery vulnerability
7.2
17 hours ago
Kargo Takip
<= 1.2
Unauthenticated Server-Side Request Forgery vulnerability
7.2
17 hours ago
EntreDroppers
<= 1.1.2
Reflected Cross-Site Scripting vulnerability
7.1
18 hours ago
Image Sizes on Demand
<= 1.3
Reflected Cross-Site Scripting vulnerability
7.1
18 hours ago
Post Video Players
<= 1.163
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
18 hours ago
Email JavaScript Cloak
<= 1.03
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
18 hours ago
ARForms
<= 7.1.3
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
18 hours ago
AdRotate Banner Manager
<= 5.17.7
Authenticated (Contributor+) PHP Code Injection vulnerability
8.8
19 hours ago
ProfileGrid
<= 5.9.9.2
Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability
6.5
19 hours ago
Welcome Software Publishing
<= 0.0.31
Authenticated (Subscriber+) Arbitrary Options Update to Privilege Escalation vulnerability
8.8
22 hours ago
WP Forms Connector
<= 1.8
Missing Authorization to Unauthenticated Information Exposure vulnerability
7.5
22 hours ago
WP Forms Connector
<= 1.8
Unauthenticated SQL Injection vulnerability
9.3
22 hours ago
Invoice Generator
<= 1.0.0
Unauthenticated Account Takeover vulnerability
9.8
23 hours ago
SignUp & SignIn
<= 1.0.0
Unauthenticated Privilege Escalation vulnerability
9.8
23 hours ago
Load more