Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
47,838
Mitigations
Mitigation rules
15,462
No official patch
12,977
In triage
1,527
Published soon
11
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Ad Manager Wd
<= 1.0.11
Unauthenticated Arbitrary File Download vulnerability
7.5
1 day ago
Hybrid Composer
<= 1.4.6
WordPress Hybrid Composer plugin <= 1.4.6 Unauthenticated Settings Change vulnerability
9.8
1 day ago
Essential Blocks for Gutenberg
<= 6.1.3
WordPress Gutenberg Essential Blocks - Page Builder for Gutenberg Blocks & Patterns plugin <= 6.1.3 - Authenticated (Author+) Server-Side Request Forgery vulnerability
5.5
1 day ago
WP Media folder Addon
<= 4.0.1
Arbitrary File Download vulnerability
7.5
2 days ago
Thrive Apprentice
< 10.8.10.2
PHP Object Injection vulnerability
9.8
2 days ago
Moderno
< 1.43
PHP Object Injection vulnerability
9.8
2 days ago
Upsell Order Bump Offer for WooCommerce
<= 3.1.4
Price Manipulation vulnerability
7.5
2 days ago
Cornerstone
< 7.8.8
Arbitrary Code Execution vulnerability
8.5
2 days ago
RegistrationMagic
<= 6.0.8.6
Broken Authentication vulnerability
9.8
2 days ago
Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms
<= 1.4.3
PHP Object Injection vulnerability
9.8
2 days ago
Integration for Contact Form 7 HubSpot
<= 1.3.7
PHP Object Injection vulnerability
9.8
2 days ago
Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms
<= 1.1.8
PHP Object Injection vulnerability
9.8
2 days ago
wpForo Forum
<= 3.1.0
Broken Authentication vulnerability
9.8
2 days ago
Happyforms
<= 1.26.13
PHP Object Injection vulnerability
9.8
2 days ago
wpForo Forum
<= 3.1.0
PHP Object Injection vulnerability
9.8
2 days ago
WP Travel Engine
<= 6.7.12
PHP Object Injection vulnerability
9.8
2 days ago
FV Flowplayer Video Player
< 7.5.51.7212
Cross Site Scripting (XSS) vulnerability
6.5
2 days ago
RD Station
<= 5.6.0
Remote Code Execution (RCE) vulnerability
9.9
2 days ago
Welcart e-Commerce
<= 2.11.28
Broken Access Control vulnerability
6.5
2 days ago
GPTranslate – Multilingual AI Translation for WordPress: Automatically Translate Websites
<= 2.32.6
SQL Injection vulnerability
9.3
2 days ago
Load more