The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing
Rated 4.9
Total48,133
Mitigations15,604
Stats
CVSS0
10
Affected software | Vulnerability
RiskDisclosed
WP Hotel Booking< 2.3.1
Subscriber+ Missing Authorization in Multiple AJAX Handlers vulnerability
5.3
1 day ago
WP Go Maps<= 10.1.01
Unauthenticated Arbitrary Record Creation vulnerability
5.3
1 day ago
Paymob for WooCommerce<= 4.1.2
Broken Access Control vulnerability
7.5
2 days ago
Master Slider<= 3.11.2
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
License Manager for WooCommerce<= 3.0.15
Insecure Direct Object References (IDOR) vulnerability
6.5
2 days ago
WP Activity Log<= 5.6.3.1
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
CheckView Automated Testing<= 2.1.0
Broken Access Control vulnerability
7.5
2 days ago
MapPress Maps for WordPress<= 2.97.3
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
Abandoned Cart Pro for WooCommerce<= 10.4.0
Privilege Escalation vulnerability
8.8
2 days ago
Bit Integrations<= 2.8.7
Unauthenticated Server-Side Request Forgery vulnerability
7.2
2 days ago
BetterDocs Pro<= 3.8.0
Unauthenticated Local File Inclusion vulnerability
10
2 days ago
STRABL – A checkout solution<= 4.5
Unauthenticated Arbitrary Webhook Creation vulnerability
5.3
2 days ago
2Download Connector for 2DL Hosted Checkout<= 0.1.5
Missing Authorization to Unauthenticated Sensitive Customer Subscription Data Exposure vulnerability
5.3
2 days ago
Fusion Builder<= 3.15.3
Unauthenticated Arbitrary File Deletion via Form Entry Value vulnerability
8.6
2 days ago
Royal Elementor Addons1.7.1058-1.7.1059
Authenticated (Contributor+) Arbitrary File Read vulnerability
6.5
2 days ago
Creavi Appointment Booking Calendar<= 1.4.4
Authenticated (Author+) Stored Cross-Site Scripting vulnerability
5.9
2 days ago
Woosa – Marktplaats for WooCommerce<= 2.0.5
Authenticated (Administrator+) Arbitrary File Read vulnerability
4.9
2 days ago
WP DSGVO Tools (GDPR)<= 3.1.39
Missing Authorization to Unauthenticated Sensitive Personal Data Disclosure vulnerability
5.3
2 days ago
Bogo<= 3.9.1
Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure vulnerability
4.3
2 days ago
Advanced Import<= 1.4.6
Authenticated (Author+) Server-Side Request Forgery vulnerability
5.5
2 days ago