Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
48,018
Mitigations
Mitigation rules
15,542
No official patch
12,967
In triage
1,570
Published soon
20
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
RTMKit
<= 2.0.7
Authenticated (Contributor+) Missing Authorization to Arbitrary Form Submission Access vulnerability
6.5
12 hours ago
Static Block
<= 2.2
Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Disclosure vulnerability
4.3
13 hours ago
Abandoned Contact Form 7
<= 2.2
Missing Authorization to Unauthenticated Arbitrary Post Deletion vulnerability
5.3
13 hours ago
Video Conferencing with Zoom
<= 4.6.7
Missing Authorization to Unauthenticated Zoom SDK Credential Exposure vulnerability
5.3
15 hours ago
Bookly
<= 27.2
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
20 hours ago
GPTranslate – Multilingual AI Translation for WordPress: Automatically Translate Websites
<= 2.31
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
20 hours ago
WP Ticket Customer Service Software & Support Ticket System
<= 6.0.4
Unauthenticated SQL Injection vulnerability
9.3
21 hours ago
Hash Elements
<= 1.5.4
Sensitive Data Exposure vulnerability
4.3
3 days ago
Meow Gallery
<= 5.4.4
Missing Authorization to Authenticated (Author+) Shortcode creation vulnerability
4.3
3 days ago
PageLayer
<= 2.0.9
Incorrect Authorization to Authenticated (Contributor+) Mail Relay Configuration vulnerability
4.3
3 days ago
PageLayer
<= 2.0.9
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
Canvas
<= 2.5.2
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
FooGallery
<= 3.1.31
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
LWS Optimize
<= 3.3.19
Authenticated (Editor+) Arbitrary File Read vulnerability
4.9
3 days ago
Kastell
<= 2.0
Local File Inclusion vulnerability
8.1
3 days ago
FastDup
<= 2.7.2
Path Traversal vulnerability
9.6
3 days ago
JetEngine
<= 3.8.10
PHP Object Injection vulnerability
9.8
3 days ago
Nifty
<= 1.4.1
PHP Object Injection vulnerability
9.8
3 days ago
WordPress & WooCommerce Scraper Plugin, Import Data from Any Site
<= 1.0.7
Arbitrary File Download vulnerability
7.5
3 days ago
WordPress & WooCommerce Scraper Plugin, Import Data from Any Site
<= 1.0.7
Arbitrary File Upload vulnerability
10
3 days ago
Load more