Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
47,477
Mitigations
Mitigation rules
15,273
No official patch
12,873
In triage
1,605
Published soon
5
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Fusion Builder
<= 3.15.2
Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability
6.5
7 hours ago
Draft List
2.6.3-2.6.3
Authenticated (Author+) Stored Cross-Site Scripting vulnerability
7.1
7 hours ago
CBX 5 Star Rating & Review
<= 1.0.7
Reflected Cross-Site Scripting vulnerability
7.1
7 hours ago
AIWU
<= 1.4.14
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
7 hours ago
Cost of Goods by PixelYourSite
<= 1.2.12
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
7 hours ago
Read More & Accordion
<= 3.5.7
Privilege Escalation vulnerability
8.8
7 hours ago
Correct Prices
<= 1.0
Reflected Cross-Site Scripting vulnerability
7.1
7 hours ago
SponsorMe
<= 0.5.2
Reflected Cross-Site Scripting vulnerability
7.1
7 hours ago
LJ comments import: reloaded
<= 0.97.1
Reflected Cross-Site Scripting vulnerability
7.1
7 hours ago
VatanSMS WP SMS
<= 1.01
Reflected Cross-Site Scripting vulnerability
7.1
7 hours ago
Oliver POS
< 4.5.4
Other Vulnerability Type vulnerability
6.5
7 hours ago
診断ジェネレータ作成プラグイン
<= 1.4.16
Authenticated (Subscriber+) Stored Cross-Site Scripting via 'js' Parameter vulnerability
6.5
7 hours ago
Kirki – Freeform Page Builder, Website Builder & Customizer
<= 6.0.6
Missing Authorization to Authenticated (Subscriber+) Sensitive Form Submission Data Exposure vulnerability
6.5
7 hours ago
WooCommerce PayPal Payments
<= 4.0.1
Missing Authorization to Unauthenticated Order Manipulation and Information Disclosure vulnerability
8.2
8 hours ago
WishList Member X
<= 3.30.1
Missing Authorization to Authenticated (Subscriber+) API Secret Key Disclosure and Privilege Escalation vulnerability
8.8
8 hours ago
WishList Member X
<= 3.30.1
Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Options Update vulnerability
8.8
8 hours ago
WishList Member X
<= 3.30.1
Missing Authorization to Authenticated (Subscriber+) Generate API Secret Key vulnerability
8.8
8 hours ago
WishList Member X
<= 3.30.1
Missing Authorization to Authenticated (Subscriber+) API Secret Key Disclosure and Privilege Escalation vulnerability
8.8
8 hours ago
WP Job Portal
<= 2.5.1
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
WP Job Portal
<= 2.5.1
SQL Injection vulnerability
9.3
2 days ago
Load more