Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
37,819
Mitigations
Mitigation rules
13,803
No official fix
10,791
In triage
1,167
Published soon
4
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
Pearl
<= 1.3.8
Cross-Site Request Forgery to Header Deletion vulnerability
4.3
1 minute ago
Accept Stripe Payments Using Contact Form 7
<= 2.5
Unauthenticated Information Exposure vulnerability
5.3
5 minutes ago
Child Theme Creator
<= 1.5.5
Missing Authorization to Authenticated (Subscriber+) Cloud Snippet Update/Delete vulnerability
4.3
7 minutes ago
Web3 Cryptocurrency Payments by DePay for WooCommerce
<= 2.12.17
Missing Authorization to Information Exposure vulnerability
5.3
7 minutes ago
Marketplace Items
<= 1.5.5
Authenticated (Contributor+) Stored Cross-Site Scripting via 'marketplace' Shortcode vulnerability
6.5
24 minutes ago
Post to Pdf
<= 1.0
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
25 minutes ago
Uptodown APK Download Widget
<= 0.1.10
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
26 minutes ago
Smart PopUp Blaster
<= 1.4.3
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
26 minutes ago
WP-Revive Adserver
<= 2.2.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
27 minutes ago
Ganohrs Toggle Shortcode
<= 0.2.4
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
27 minutes ago
Linear
<= 2.7.12
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 hour ago
GeoDataSource Country Region DropDown
<= 1.0.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 hour ago
Simple Locator
<= 2.0.3
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 hour ago
WordPress Survey & Poll
<= 1.7.5
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 hour ago
Tickera
<= 3.5.4.8
Unauthenticated Customer Data Exposure vulnerability
5.3
1 hour ago
Shortcodes and extra features for Phlox theme
<= 2.17.2
Authenticated (Contributor+) Stored Cross-Site Scripting via Staff Widget vulnerability
6.5
1 hour ago
bodi0’s Easy Cache
<= 0.8
Authenticated (Admin+) Stored Cross-Site Scripting vulnerability
5.9
1 hour ago
Brizy
<= 2.4.40
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 hour ago
Unlimited Elements For Elementor (Free Widgets, Addons, Templates)
<= 1.5.135
Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability
6.5
1 hour ago
EventPrime
<= 3.4.2
Unauthenticated Booking Payment Bypass vulnerability
5.3
1 hour ago
Load more