Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
37,074
Mitigations
Mitigation rules
13,666
No official fix
10,675
In triage
1,161
Published soon
18
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
Meta-box GalleryMeta
<= 3.0.1
Missing Authorization to Authenticated (Author+) Gallery Management vulnerability
3.8
2 hours ago
Postalicious
<= 3.0.1
Authenticated (Administrator+) Stored Cross-Site Scripting via Plugin Settings vulnerability
5.9
2 hours ago
Meta-box GalleryMeta
<= 3.0.1
Authenticated (Editor+) Stored Cross-Site Scripting via Image Caption vulnerability
6.5
2 hours ago
User Submitted Posts
<= 20251210
WordPress User Submitted Posts - Enable Users to Submit Posts from the Front End plugin <= 20251210 - Unauthenticated Stored Cross-Site Scripting via Custom Field vulnerability
7.1
14 hours ago
Metform
<= 4.1.0
WordPress MetForm - Contact Form, Survey, Quiz, & Custom Form Builder for Elementor plugin <= 4.1.0 - Unauthenticated Form Submission Exposure via Forgeable Cookie Value vulnerability
3.7
14 hours ago
JustClick registration plugin
<= 0.1
Reflected Cross-Site Scripting via PHP_SELF vulnerability
7.1
14 hours ago
Frontis Blocks
<= 1.1.6
Unauthenticated Server-Side Request Forgery via 'url' Parameter vulnerability
7.2
14 hours ago
Kalrav AI Agent
<= 2.3.3
Unauthenticated Arbitrary File Upload via kalrav_upload_file AJAX Action vulnerability
10
14 hours ago
Kentha Elementor Widgets
< 3.1
Local File Inclusion vulnerability
7.5
2 days ago
Omnipress
<= 1.6.7
Local File Inclusion vulnerability
7.5
2 days ago
Protección de datos – RGPD
<= 0.68
Broken Access Control vulnerability
5.3
2 days ago
Integrate Google Drive
<= 1.5.6
Broken Access Control vulnerability
5.4
2 days ago
Download After Email
<= 2.1.9
Broken Access Control vulnerability
5.3
2 days ago
WP Term Order
<= 2.1.0
Cross Site Request Forgery (CSRF) vulnerability
4.3
2 days ago
WP Job Portal
<= 2.4.3
Insecure Direct Object References (IDOR) vulnerability
4.3
2 days ago
Materialis Companion
<= 1.3.52
Broken Access Control vulnerability
4.3
2 days ago
HD Quiz
<= 2.0.9
Broken Access Control vulnerability
4.3
2 days ago
Moderate Selected Posts
<= 1.4
Cross-Site Request Forgery to Plugin Settings Update vulnerability
4.3
2 days ago
All-in-One Video Gallery
4.1.0-4.6.4
Missing Authorization to Authenticated (Subscriber+) Limited User Meta Update vulnerability
5.4
2 days ago
CM CSS Columns
<= 1.2.1
Authenticated (Contributor+) Stored Cross-Site Scripting via 'tag' Shortcode Attribute vulnerability
6.5
2 days ago
Load more