The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing

Rated 4.9

Total47,553

MitigationsMitigation rules15,324

No official patch12,921

In triage1,530

Published soon56

StatsWordPress stats

CVSS0

Mitigation available

Exploited

Affected software \| Vulnerability	Risk	Disclosed
Unlimited Elements For Elementor (Free Widgets, Addons, Templates)<= 2.0.8 SQL Injection vulnerability	8.5	04/06/2026
Sunshine Photo Cart<= 3.6.7 Broken Access Control vulnerability	6.3	02/06/2026
SePay Gateway<= 1.1.20 Sensitive Data Exposure vulnerability	6.5	02/06/2026
Paid Videochat Turnkey Site<= 7.3.23 Broken Access Control vulnerability	5.3	5 hours ago
RepairBuddy<= 4.1121 Broken Access Control vulnerability	4.3	5 hours ago
Geo Mashup<= 1.13.18 Cross Site Scripting (XSS) vulnerability	6.5	5 hours ago
Nyla<= 1.7 Arbitrary Shortcode Execution vulnerability	5.3	6 hours ago
SW Core<= 1.7.18 Local File Inclusion vulnerability	7.5	7 hours ago
Mayosis Core<= 5.4.7 Broken Access Control vulnerability	5.3	7 hours ago
NanoCare< 1.2.2 Broken Access Control vulnerability	5.4	15 hours ago
CformsII<= 15.1.3 Cross Site Request Forgery (CSRF) vulnerability	7.1	15 hours ago
Broadcast Live Video< 7.1.3 Remote Code Execution (RCE) vulnerability	7.2	15 hours ago
WP Search Analytics< 1.5.0 Broken Access Control vulnerability	5.3	16 hours ago
RSVP and Event Management<= 2.7.16 Broken Access Control vulnerability	5.3	16 hours ago
B2BKing< 5.2.10 Broken Access Control vulnerability	4.9	16 hours ago
WPSubscription<= 1.9.1 Cross Site Request Forgery (CSRF) vulnerability	4.3	16 hours ago
Autoship Cloud for WooCommerce Subscription Products<= 2.14.0 Broken Access Control vulnerability	4.3	16 hours ago
Team Showcase<= 1.22.28 Cross Site Scripting (XSS) vulnerability	6.5	16 hours ago
Newses<= 2.0.0.77 Broken Access Control vulnerability	5.4	16 hours ago
Auto Affiliate Links<= 6.8.8.3 Broken Access Control vulnerability	5.3	16 hours ago