Pricing

WordPress security

Instantly fix and mitigate vulnerabilities

Plugin auditing

Paid auditing for WordPress vendors

Managed VDP

Start a security program for your plugin

Bug Bounty

Join the community and earn bounties

Enterprise API

At scale monitoring and vPatching for hosts

Vulnerability database

The latest WordPress security intelligence
Login
Start FREE
Popup Builder Logo

Popup Builder

Plugin

Changelog

Claim

VDP

Developer

Looking Forward Software Incorporated.

Current version

4.2.7

Installations

200,000

Last updated

2 weeks ago

Vulnerability history

Not fixed 0 present
Fixed 16 patched

Cross Site Scripting (XSS) vulnerability <= 4.2.6

Badge Patch priority: low Fixed

6.5

25 March, 2024

Admin+ SSRF & File Read vulnerability < 4.2.6

Patch priority: low Fixed

5.5

13 February, 2024

Unauthenticated Stored XSS vulnerability < 4.2.3

Vulnerability exploited
Patch priority: high Fixed

7.1

12 December, 2023

Admin+ Stored CrossSite Scripting vulnerability < 4.2.2

Patch priority: low Fixed

5.9

26 September, 2023

CrossSite Request Forgery (CSRF) leading to plugin settings update <= 4.1.11

Patch priority: low Fixed

5.4

30 June, 2022

Protection

Pricing WordPress For agencies Standard API Documentation

Solutions

WordPress security Plugin auditing Managed VDP Bug bounty Enterprise API

Bug bounty

Leaderboard Security programs Guidelines Report

Resources

Vulnerability Database Vulnerability Statistics Whitepaper 2024NEW Articles Join Discord

Patchstack

About StoreNEW Careers Media kit LinkedIn Facebook X
© 2024 Patchstack DPA Privacy Policy Terms & Conditions

Protection

Pricing WordPress For agencies Standard API Documentation

Solutions

WordPress security Plugin auditing Managed VDP Bug bounty Enterprise API

Bug bounty

Leaderboard Security programs Guidelines Report

Resources

Vulnerability Database Vulnerability Statistics Whitepaper 2024NEW Articles Join Discord

Patchstack

About StoreNEW Careers Media kit LinkedIn Facebook X
Mobile Menu

Let us know if we have missed a vulnerability reported elsewhere

Mobile Menu Close

Thank you for contributing!

Close Mobile Menu