Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
35,933
Mitigations
Mitigation rules
13,240
No official fix
10,053
In triage
1,529
Published soon
5
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
Nika
<= 1.2.14
Local File Inclusion vulnerability
7.5
5 hours ago
Diza
<= 1.3.15
Local File Inclusion vulnerability
7.5
5 hours ago
Responsive Posts Carousel Pro
<= 15.2
Cross Site Scripting (XSS) vulnerability
6.5
5 hours ago
WPBulky
<= 1.1.13
SQL Injection vulnerability
7.6
5 hours ago
VPSUForm
<= 3.2.24
Sensitive Data Exposure vulnerability
6.5
5 hours ago
HAPPY
<= 1.0.9
Broken Access Control vulnerability
5.3
5 hours ago
Chakra test
<= 1.0.1
Broken Access Control vulnerability
4.3
5 hours ago
Beaver Builder
<= 2.9.4.1
Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Update vulnerability
8.1
17 hours ago
WooMulti
<= 1.7
Authenticated (Subscriber+) Arbitrary File Deletion vulnerability
7.7
17 hours ago
Happy Addons for Elementor
<= 3.20.3
Authenticated (Contributor+) Stored Cross-Site Scripting via Custom JS vulnerability
6.5
17 hours ago
Restrict Content
<= 3.2.15
Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcodes vulnerability
6.5
17 hours ago
Calendar
<= 1.3.16
Authenticated (Contributor+) Stored Cross-Site Scripting via 'event_desc' vulnerability
6.5
17 hours ago
Premium Addons for Elementor
<= 4.11.53
Cross-Site Request Forgery via 'insert_inner_template' vulnerability
4.3
17 hours ago
WooCommerce
<= 10.4.2
Sensitive Data Exposure vulnerability
6.5
22 hours ago
Gutenverse Form
<= 2.3.1
Broken Access Control vulnerability
6.5
3 days ago
Royal Elementor Addons
<= 1.7.1036
Missing Authorization to Unauthenticated Media File Upload vulnerability
5.3
3 days ago
Ultimate Member
<= 2.11.0
Unauthenticated Sensitive Information Exposure vulnerability
5.3
3 days ago
FiboSearch – Ajax Search for WooCommerce
<= 1.32.0
Authenticated (Contributor+) Stored Cross-Site Scripting via thegem_te_search Shortcode vulnerability
6.5
3 days ago
Pretty Google Calendar
<= 2.0.0
Missing Authorization to Unauthenticated Google API Key Exposure vulnerability
5.3
3 days ago
Quran Gateway
<= 1.5
Cross-Site Request Forgery to Settings Update vulnerability
4.3
3 days ago
Load more