The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing

Rated 4.9

Total47,551

MitigationsMitigation rules15,324

No official patch12,928

In triage1,516

Published soon38

StatsWordPress stats

CVSS0

Mitigation available

Exploited

Affected software \| Vulnerability	Risk	Disclosed
Unlimited Elements For Elementor (Free Widgets, Addons, Templates)<= 2.0.8 SQL Injection vulnerability	8.5	04/06/2026
Sunshine Photo Cart<= 3.6.7 Broken Access Control vulnerability	6.3	02/06/2026
SePay Gateway<= 1.1.20 Sensitive Data Exposure vulnerability	6.5	02/06/2026
Paid Videochat Turnkey Site<= 7.3.23 Broken Access Control vulnerability	5.3	7 minutes ago
RepairBuddy<= 4.1121 Broken Access Control vulnerability	4.3	10 minutes ago
Geo Mashup<= 1.13.18 Cross Site Scripting (XSS) vulnerability	6.5	12 minutes ago
Nyla<= 1.7 Arbitrary Shortcode Execution vulnerability	5.3	40 minutes ago
SW Core<= 1.7.18 Local File Inclusion vulnerability	7.5	1 hour ago
Mayosis Core<= 5.4.7 Broken Access Control vulnerability	5.3	1 hour ago
NanoCare< 1.2.2 Broken Access Control vulnerability	5.4	9 hours ago
CformsII<= 15.1.3 Cross Site Request Forgery (CSRF) vulnerability	7.1	10 hours ago
Broadcast Live Video< 7.1.3 Remote Code Execution (RCE) vulnerability	7.2	10 hours ago
WP Search Analytics< 1.5.0 Broken Access Control vulnerability	5.3	10 hours ago
RSVP and Event Management<= 2.7.16 Broken Access Control vulnerability	5.3	10 hours ago
B2BKing< 5.2.10 Broken Access Control vulnerability	4.9	10 hours ago
WPSubscription<= 1.9.1 Cross Site Request Forgery (CSRF) vulnerability	4.3	10 hours ago
Autoship Cloud for WooCommerce Subscription Products<= 2.14.0 Broken Access Control vulnerability	4.3	10 hours ago
Team Showcase<= 1.22.28 Cross Site Scripting (XSS) vulnerability	6.5	10 hours ago
Newses<= 2.0.0.77 Broken Access Control vulnerability	5.4	10 hours ago
Auto Affiliate Links<= 6.8.8.3 Broken Access Control vulnerability	5.3	11 hours ago