Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
37,596
Mitigations
Mitigation rules
13,803
No official fix
10,777
In triage
1,257
Published soon
1
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
WooCommerce PDF Vouchers
<= 4.9.3
WordPress WooCommerce - PDF Vouchers plugin <= 4.9.3 - Authentication Bypass to Voucher Vendor vulnerability
7.3
1 hour ago
Zephyr Project Manager
<= 3.3.101
Authenticated (Subscriber+) Limited Privilege Escalation vulnerability
8.1
1 hour ago
WooCommerce Social Login
<= 2.7.3
Unauthenticated Authentication Bypass vulnerability
7.3
1 hour ago
WooCommerce Social Login
<= 2.7.3
Missing Authorization to Unauthenticated Privilege Escalation vulnerability
9.8
1 hour ago
WooCommerce Social Login
<= 2.7.3
Unauthenticated Privilege Escalation via One-Time Password vulnerability
7.3
1 hour ago
OSM
<= 6.0.3
Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
6.5
2 hours ago
Content Blocks (Custom Post Widget)
<= 3.3.0
Authenticated (Contributor+) Stored Cross-Site Scripting via content_block Shortcode vulnerability
6.5
2 hours ago
Email Subscribers & Newsletters
<= 5.7.17
WordPress Email Subscribers by Icegram Express - Email Marketing, Newsletters, Automation for WordPress & WooCommerce plugin <= 5.7.17 - Missing Authorization vulnerability
4.3
2 hours ago
Livemesh Addons for Elementor
<= 8.3.7
Authenticated (Contributor+) Stored Cross-Site Scripting via Posts Grid vulnerability
6.5
2 hours ago
Premium Addons for Elementor
<= 4.10.28
Authenticated (Contributor+) Stored Cross-Site Scripting via 'arrow_style' vulnerability
6.5
2 hours ago
Advanced Contact form 7 DB
<= 2.0.2
Sensitive Information Exposure vulnerability
5.3
2 hours ago
Enter Addons
<= 2.1.5
Authenticated (Contributor+) Stored Cross-Site Scripting via Animation Title widget img tag vulnerability
6.5
2 hours ago
Happy Addons for Elementor
<= 3.10.4
Authenticated (Contributor+) Stored Cross-Site Scripting via Image Stack Group, Photo Stack, & Horizontal Timeline vulnerability
6.5
2 hours ago
Login Logout Register Menu
<= 2.0
Authenticated (Contributor+) Stored Cross-Site Scripting via 'llrmloginlogout' Shortcode vulnerability
6.5
2 hours ago
Testimonial Carousel For Elementor
<= 10.1.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
2 hours ago
Essential Addons for Elementor
<= 5.9.15
Authenticated (Contributor+) Stored Cross-Site Scripting via Filterable Gallery & Interactive Circle vulnerability
6.5
2 hours ago
Porto Theme - Functionality
<= 3.0.9
WordPress Porto Theme - Functionality plugin <= 3.0.9 - Authenticated (Contributor+) Local File Inclusion via Post Meta vulnerability
7.5
2 hours ago
Salient Shortcodes
<= 1.5.3
Authenticated (Contributor+) Local File Inclusion via Shortcode vulnerability
7.5
2 hours ago
Royal Elementor Addons
<= 1.3.971
Authenticated (Contributor+) Stored Cross-Site Scripting via Advanced Accordion Title Tags vulnerability
6.5
2 hours ago
Salient Core
<= 2.0.7
Authenticated (Contributor+) Local File Inclusion via Shortcode vulnerability
7.5
2 hours ago
Load more