Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
36,124
Mitigations
Mitigation rules
13,308
No official fix
10,170
In triage
1,276
Published soon
56
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
WP-CalDav2ICS
<= 1.3.4
Cross Site Request Forgery (CSRF) vulnerability
7.1
2 minutes ago
MAS Videos
<= 1.3.2
Local File Inclusion vulnerability
7.5
22 minutes ago
Email Verification for WooCommerce
<= 3.0.2
Cross Site Scripting (XSS) vulnerability
6.5
1 hour ago
Appointify
<= 1.0.8
SQL Injection vulnerability
7.6
6 hours ago
WING WordPress Migrator
<= 1.1.9
Cross Site Request Forgery (CSRF) vulnerability
9.6
6 hours ago
WPCal.io
<= 0.9.5.9
Cross Site Scripting (XSS) vulnerability
6.5
6 hours ago
SiteLock Security
<= 5.0.1
Broken Access Control vulnerability
4.3
6 hours ago
Import into Easy Property Listings
<= 2.2.1
Cross Site Request Forgery (CSRF) vulnerability
4.3
6 hours ago
Yada Wiki
<= 3.5
Cross Site Scripting (XSS) vulnerability
6.5
6 hours ago
Featured Video for WordPress – VideographyWP
<= 1.0.18
Cross Site Scripting (XSS) vulnerability
6.5
6 hours ago
WP Cookie Notice for GDPR, CCPA & ePrivacy Consent
<= 4.0.3
Broken Access Control vulnerability
5.3
6 hours ago
WBC907 Core
<= 3.4.1
Cross Site Scripting (XSS) vulnerability
6.5
6 hours ago
XStore Core
< 5.6
Cross Site Scripting (XSS) vulnerability
6.5
6 hours ago
Advance WP Query Search Filter
<= 1.0.10
Reflected XSS via taxo_ajax vulnerability
7.1
14 hours ago
Advance WP Query Search Filter
<= 1.0.10
Reflected XSS via counter vulnerability
7.1
14 hours ago
Strong Testimonials
<= 3.2.18
Missing Authorization to Authenticated (Contributor+) Rating Meta Update vulnerability
4.3
16 hours ago
Lucky Wheel for WooCommerce – Spin a Sale
<= 1.1.13
Authenticated (Administrator+) PHP Code Injection via Conditional Tags vulnerability
9.1
16 hours ago
Plugin Organizer
< 10.2.4
Subscriber+ SQLi vulnerability
8.5
1 day ago
YaMaps for WordPress
< 0.6.40
Contributor+ Stored XSS vulnerability
6.5
1 day ago
Advanced Ads
<= 2.0.14
Authenticated (Editor+) Remote Code Execution via Shortcode vulnerability
9.1
1 day ago
Load more