Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
48,145
Mitigations
Mitigation rules
15,604
No official patch
12,947
In triage
1,533
Published soon
0
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Branda
<= 3.4.29
WordPress Branda - White Label & Branding, Free Login Page Customizer plugin <= 3.4.29 - Unauthenticated Privilege Escalation via Account Takeover vulnerability
9.8
3 minutes ago
Motors
< 1.4.110
Unauthenticated Post-Meta Write via stm_ajax_add_a_car_media vulnerability
5.4
13 minutes ago
Pie Register
< 3.8.4.10
Unauthenticated Email Verification Bypass via Predictable Token vulnerability
5.3
16 minutes ago
Simple File List
<= 6.3.7
Missing Authorization to Authenticated (Contributor+) Arbitrary File Operations (Deletion / Move / Folder Creation / Download) via 'frontmanage' Shortcode Attribute vulnerability
6.5
17 minutes ago
WP Hotel Booking
< 2.3.1
Subscriber+ Missing Authorization in Multiple AJAX Handlers vulnerability
5.3
2 days ago
WP Go Maps
<= 10.1.01
Unauthenticated Arbitrary Record Creation vulnerability
5.3
2 days ago
UPI QR Code Payment Gateway for WooCommerce
<= 1.6.2
Broken Access Control vulnerability
5.4
2 days ago
Paymob for WooCommerce
<= 4.1.2
Broken Access Control vulnerability
7.5
2 days ago
Master Slider
<= 3.11.2
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
License Manager for WooCommerce
<= 3.0.15
Insecure Direct Object References (IDOR) vulnerability
6.5
2 days ago
WP Activity Log
<= 5.6.3.1
Cross Site Scripting (XSS) vulnerability
7.1
3 days ago
CheckView Automated Testing
<= 2.1.0
Broken Access Control vulnerability
7.5
3 days ago
MapPress Maps for WordPress
<= 2.97.3
Cross Site Scripting (XSS) vulnerability
7.1
3 days ago
Abandoned Cart Pro for WooCommerce
<= 10.4.0
Privilege Escalation vulnerability
8.8
3 days ago
Bit Integrations
<= 2.8.7
Unauthenticated Server-Side Request Forgery vulnerability
7.2
3 days ago
BetterDocs Pro
<= 3.8.0
Unauthenticated Local File Inclusion vulnerability
10
3 days ago
STRABL – A checkout solution
<= 4.5
Unauthenticated Arbitrary Webhook Creation vulnerability
5.3
3 days ago
2Download Connector for 2DL Hosted Checkout
<= 0.1.5
Missing Authorization to Unauthenticated Sensitive Customer Subscription Data Exposure vulnerability
5.3
3 days ago
Fusion Builder
<= 3.15.3
Unauthenticated Arbitrary File Deletion via Form Entry Value vulnerability
8.6
3 days ago
Royal Elementor Addons
1.7.1058-1.7.1059
Authenticated (Contributor+) Arbitrary File Read vulnerability
6.5
3 days ago
Load more