Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
35,699
Mitigations
Mitigation rules
13,213
No official fix
10,011
In triage
1,591
Published soon
51
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
Popover Windows
<= 1.2
Cross-Site Request Forgery to Arbitrary Popover Configuration Update vulnerability
4.3
2 minutes ago
Quick Testimonials
<= 2.1
Authenticated (Admin+) Stored Cross-Site Scripting vulnerability
5.9
3 minutes ago
Solutions Ad Manager
<= 1.0.0
Unauthenticated Open Redirect via 'sam-redirect-to' Parameter vulnerability
4.7
7 minutes ago
AnnunciFunebri Impresa
<= 4.7.0
Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Options Deletion vulnerability
5.4
10 minutes ago
Devs CRM
<= 1.1.8
Missing Authorization to Unauthenticated Lead Tag Update vulnerability
5.3
11 minutes ago
Popup Builder
<= 1.1.37
Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Settings Reset vulnerability
5.4
20 minutes ago
Devs CRM
<= 1.1.8
Unauthenticated Information Expsoure vulnerability
5.3
59 minutes ago
Userback
<= 1.0.15
Missing Authorization to Authenticated (Subscriber+) Plugin's Configuration Exposure vulnerability
5.4
1 hour ago
Easy Theme Options
<= 1.0
Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Settings Import vulnerability
5.3
1 hour ago
Eyewear prescription form
<= 6.0.1
Missing Authorization to Unauthenticated Arbitrary WooCommerce Product Creation vulnerability
5.3
1 hour ago
SimpLy Gallery
<= 3.3.0
Missing Authorization to Authenticated (Contributor+) Plugin Settings Modification vulnerability
4.3
1 hour ago
Redux Framework
<= 4.5.8
Authenticated (Contributor+) Stored Cross-Site Scripting via data Parameter vulnerability
6.5
1 hour ago
a3 Lazy Load
<= 2.7.5
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 hour ago
rtMedia for WordPress, BuddyPress and bbPress
4.7.0-4.7.3
Missing Authorization to Unauthenticated Information Disclosure
3.7
1 hour ago
Colibri Page Builder
<= 1.0.335
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 hour ago
Kingcabs
<= 1.1.9
Authenticated (Contributor+) Stored Cross-Site Scripting via progressbarLayout Parameter vulnerability
6.5
2 hours ago
YITH WooCommerce Quick View
<= 2.7.0
Authenticated (Contributor+) Stored Cross-Site Scripting via yith_quick_view Shortcode vulnerability
6.5
2 hours ago
Mavix Education
<= 1.0
Missing Authorization to Authenticated (Subscriber+) 'Creativ Demo Importer' Plugin Activation vulnerability
4.3
2 hours ago
Header Footer Script Adder
<= 2.0.5
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
2 hours ago
Emplibot
<= 1.0.9
Authenticated (Admin+) Server-Side Request Forgery vulnerability
4.4
2 hours ago
Load more