Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
49,300
Mitigations
Mitigation rules
15,929
No official patch
13,066
In triage
1,340
Published soon
0
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
safeinstall-cli
< 0.10.2
NPM: SafeInstall agent guard shell parsing can miss raw package execution
8.8
1 day ago
tarteaucitronjs
< 1.33.0
NPM: tarteaucitron: data-cookie attribute can be used to delete arbitrary cookies
4.3
2 days ago
@libp2p/gossipsub
< 16.0.0
NPM: libp2p: CPU DoS via oversized IHAVE and IWANT control message arrays
7.5
2 days ago
morgan
>= 1.2.0, <= 1.10.1
NPM: morgan vulnerable to Log Forging via unneutralized control characters in :remote-user
5.3
2 days ago
WP Google Maps Pro
<= 10.1.02
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
NEX-Forms
<= 9.2.2
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
Document Gallery
<= 5.1.0
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
ICS Calendar
<= 12.1.1
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
SupportCandy
<= 3.4.8
Cross Site Scripting (XSS) vulnerability
6.5
2 days ago
WPZOOM Portfolio
<= 1.4.29
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
Breakdance
<= 2.7.1
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
Funnel Builder by FunnelKit
<= 3.15.0.8
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
Dokan
<= 5.0.6
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
All-in-One Video Gallery
<= 4.8.5
Authenticated (Subscriber+) Server-Side Request Forgery vulnerability
6.4
2 days ago
WP Hotel Booking
<= 2.3.1
Reflected Cross-Site Scripting vulnerability
7.1
2 days ago
Hide My WP Lite
<= 1.3
Unauthenticated Path Traversal to Arbitrary File Read vulnerability
7.5
2 days ago
UsersWP
<= 1.2.65
Authenticated (Subscriber+) Arbitrary File Deletion vulnerability
8.8
2 days ago
Super Forms
<= 6.3.313
Unauthenticated Arbitrary File Upload vulnerability
10
2 days ago
LoginPress Pro
<= 6.2.3
Unauthenticated Authentication Bypass vulnerability
8.1
2 days ago
LoginPress Pro
<= 6.2.3
Unauthenticated Authentication Bypass vulnerability
8.1
2 days ago
Load more