The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing
Rated 4.9
Total48,621
Mitigations15,667
Stats
CVSS0
10
Affected software | Vulnerability
RiskDisclosed
WPCafe<= 3.0.14
Broken Access Control vulnerability
4.3
1 hour ago
Cornerstone< 7.8.8
Subscriber+ Arbitrary User Password Hash Disclosure vulnerability
6.5
1 hour ago
Post Duplicator< 3.0.15
Contributor+ PHP Object Injection via customMetaData vulnerability
8.8
2 hours ago
Frontend File Manager<= 23.6
Subscriber+ Stored Cross-Site Scripting via File Rename vulnerability
6.5
2 hours ago
Elementor Website Builder<= 4.1.3
Sensitive Data Exposure vulnerability
6.5
2 hours ago
Neve PRO<= 3.1.2
Cross Site Scripting (XSS) vulnerability
6.5
2 hours ago
SeedProd Pro< 6.19.5
Cross Site Scripting (XSS) vulnerability
6.5
2 hours ago
Featured Image<= 2.1
Cross Site Scripting (XSS) vulnerability
6.5
2 hours ago
Slick Popup<= 1.7.15
Cross Site Scripting (XSS) vulnerability
6.5
2 hours ago
Simple Basic Contact Form<= 20250114
Reflected XSS vulnerability
7.1
2 hours ago
Infility Global< 2.15.19
Subscriber+ SQL Injection via order Parameter vulnerability
8.5
2 hours ago
Tourfic<= 2.22.7
Unauthenticated SQL Injection vulnerability
9.3
2 hours ago
SEOPress PRO<= 9.1.1
Broken Access Control vulnerability
4.3
2 hours ago
Request a Quote<= 2.5.2
Cross Site Scripting (XSS) vulnerability
6.5
2 hours ago
Slim SEO<= 4.6.2
Broken Access Control vulnerability
6.5
2 hours ago
Gravity Forms Bookings premium<= 2.7.1
Authenticated (Subscriber+) Time-Based SQL Injection vulnerability
8.5
2 hours ago
Dokan Pro<= 5.0.4
Unauthenticated SQL Injection vulnerability
9.3
2 hours ago
Dokan Pro<= 5.0.4
Authenticated (Subscriber+) SQL Injection vulnerability
8.5
2 hours ago
SiteGround Email Marketing<= 1.7.5
Broken Access Control vulnerability
5.3
2 hours ago
Frontend File Manager<= 23.6
Unauthenticated Arbitrary File Download vulnerability
7.5
3 hours ago