Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
47,968
Mitigations
Mitigation rules
15,506
No official patch
12,974
In triage
1,571
Published soon
10
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Restaurant Cafeteria
<= 0.4.6
Subscriber+ Arbitrary Plugin Installation/Activation vulnerability
8.8
4 minutes ago
Fortis for WooCommerce
< 1.3.1
Sensitive API Key Disclosure vulnerability
7.5
16 minutes ago
PowerPack for LearnDash
< 1.3.0
Unauthenticated Arbitrary Option Update vulnerability
9.8
28 minutes ago
Magic Export & Import
< 1.2.0
Unauthenticated PII Disclosure vulnerability
7.5
32 minutes ago
WP Photo Album Plus
< 9.1.11.001
Unauthenticated SQL Injection via 'wppa-supersearch' Parameter vulnerability
9.3
32 minutes ago
Login with Salesforce
<= 1.0.2
Unauthenticated Authentication Bypass vulnerability
8.1
33 minutes ago
WP eCommerce
<= 3.15.1
Coupon Deletion via CSRF vulnerability
5.4
50 minutes ago
Feeds for YouTube
< 2.6.4
Subscriber+ License Data Deletion vulnerability
5.4
50 minutes ago
Lazy Blocks
< 4.3.0
Admin+ Stored XSS via Custom Block Frontend HTML vulnerability
5.9
1 hour ago
Schema & Structured Data for WP & AMP
< 1.60
Unauthenticated Arbitrary Media Upload vulnerability
5.3
3 hours ago
Spam protection, AntiSpam, FireWall by CleanTalk
< 6.79
Unauthenticated Stored XSS via Comment Shortcode Bypass vulnerability
7.1
4 hours ago
Open User Map PRO
<= 1.4.31
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
4 hours ago
XStore
< 9.7.3
Unauthenticated SQLi vulnerability
9.3
4 hours ago
Store Locator WordPress
< 1.6.6
Admin+ Stored XSS via map_style vulnerability
5.9
8 hours ago
UpdraftPlus
<= 1.26.4
Unauthenticated Authentication Bypass via UpdraftCentral udrpc vulnerability
8.1
19 hours ago
Newsletters
<= 4.13
Unauthenticated SQL Injection vulnerability
9.3
1 day ago
Doctreat Core
<= 1.6.8
Unauthenticated Privilege Escalation vulnerability
9.8
1 day ago
aThemes Addons for Elementor
<= 1.1.8
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
MW WP Form
<= 5.1.3
Authenticated (Editor+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
Easy Image Collage
<= 1.13.6
Authenticated (Author+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
Load more