The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing
Rated 4.9
Total48,645
Mitigations15,686
Stats
CVSS0
10
Affected software | Vulnerability
RiskDisclosed
User Registration<= 5.2.0
Missing Authorization to Unauthenticated Payment Bypass vulnerability
6.5
40 minutes ago
OMGF Pro<= 5.2.6
Arbitrary File Upload vulnerability
10
15 hours ago
Groundhogg<= 4.5.4
Authenticated (Custom+) SQL Injection vulnerability
8.5
20 hours ago
WPCafe<= 3.0.14
Broken Access Control vulnerability
4.3
23 hours ago
Cornerstone< 7.8.8
Subscriber+ Arbitrary User Password Hash Disclosure vulnerability
6.5
1 day ago
Post Duplicator< 3.0.15
Contributor+ PHP Object Injection via customMetaData vulnerability
8.8
1 day ago
Frontend File Manager<= 23.6
Subscriber+ Stored Cross-Site Scripting via File Rename vulnerability
6.5
1 day ago
Elementor Website Builder<= 4.1.3
Sensitive Data Exposure vulnerability
6.5
1 day ago
Neve PRO<= 3.1.2
Cross Site Scripting (XSS) vulnerability
6.5
1 day ago
SeedProd Pro< 6.19.5
Cross Site Scripting (XSS) vulnerability
6.5
1 day ago
Featured Image<= 2.1
Cross Site Scripting (XSS) vulnerability
6.5
1 day ago
Slick Popup<= 1.7.15
Cross Site Scripting (XSS) vulnerability
6.5
1 day ago
Simple Basic Contact Form<= 20250114
Reflected XSS vulnerability
7.1
1 day ago
Infility Global< 2.15.19
Subscriber+ SQL Injection via order Parameter vulnerability
8.5
1 day ago
Tourfic<= 2.22.7
Unauthenticated SQL Injection vulnerability
9.3
1 day ago
SEOPress PRO<= 9.1.1
Broken Access Control vulnerability
4.3
1 day ago
Request a Quote<= 2.5.2
Cross Site Scripting (XSS) vulnerability
6.5
1 day ago
Slim SEO<= 4.6.2
Broken Access Control vulnerability
6.5
1 day ago
Gravity Forms Bookings premium<= 2.7.1
Authenticated (Subscriber+) Time-Based SQL Injection vulnerability
8.5
1 day ago
Dokan Pro<= 5.0.4
Unauthenticated SQL Injection vulnerability
9.3
1 day ago