The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing
Rated 4.9
Total40,279
Mitigations15,033
Stats
CVSS0
10
Affected software | Vulnerability
RiskDisclosed
Short Comment Filter<= 2.2
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
4.4
8 hours ago
Private WP suite<= 0.4.1
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
4.4
8 hours ago
Real Estate Pro<= 1.0.9
Authenticated (Admin+) Stored Cross-Site Scripting vulnerability
5.5
8 hours ago
HTTP Headers<= 1.19.2
Authenticated (Administrator+) CRLF Injection vulnerability
5.5
8 hours ago
HTTP Headers<= 1.19.2
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
4.4
8 hours ago
TextP2P Texting Widget<= 1.7
Cross-Site Request Forgery to Settings Update vulnerability
4.3
8 hours ago
Kcaptcha<= 1.0.1
Cross-Site Request Forgery to Settings Update vulnerability
4.3
8 hours ago
Call To Action Plugin<= 3.1.3
Cross-Site Request Forgery vulnerability
4.3
8 hours ago
mCatFilter<= 0.5.2
Cross-Site Request Forgery vulnerability
4.3
8 hours ago
DX Unanswered Comments<= 1.7
Cross-Site Request Forgery vulnerability
4.3
8 hours ago
Sentence To SEO (keywords, description and tags)<= 1.0
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
4.4
8 hours ago
Ni WooCommerce Order Export<= 3.1.6
Cross-Site Request Forgery to Settings Update vulnerability
4.3
8 hours ago
Zypento Blocks<= 1.06
Authenticated (Author+) Stored Cross-Site Scripting vulnerability
6.4
8 hours ago
Buzz Comments<= 0.9.4
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
4.4
8 hours ago
Fast & Fancy Filter – 3F<= 1.2.2
Cross-Site Request Forgery to Settings Modification vulnerability
4.3
8 hours ago
Google PageRank Display<= 1.4
Cross-Site Request Forgery to Settings Update vulnerability
4.3
8 hours ago
Responsive Blocks2.0.9-2.2.1
Missing Authorization to Authenticated (Contributor+) Arbitrary Modification vulnerability
4.3
18 hours ago
CMS für Motorrad Werkstätten<= 1.0.0
Authenticated (Subscriber+) SQL Injection vulnerability
6.5
18 hours ago
Email Encoder Bundle< 2.3.4
Admin+ Stored XSS vulnerability
5.9
1 day ago
Responsive Blocks<= 2.2.0
Unauthenticated Open Email Relay via REST API 'email_to' Parameter vulnerability
5.3
1 day ago