Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
36,602
Mitigations
Mitigation rules
13,450
No official fix
10,467
In triage
840
Published soon
45
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
AMP for WP
<= 1.1.10
Authenticated Stored Cross-Site Scripting via SVG File Upload vulnerability
5.9
1 minute ago
Booking Calendar
<= 10.14.10
Unauthenticated Sensitive Information Exposure vulnerability
5.3
2 minutes ago
Tutor LMS
<= 3.9.3
WordPress Tutor LMS - eLearning and online course solution plugin <= 3.9.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Coupon Modification vulnerability
5.4
3 minutes ago
WP Table Builder
<= 2.0.19
Incorrect Authorization to Authenticated (Subscriber+) Arbitrary Table Creation vulnerability
5.4
4 minutes ago
Tutor LMS
<= 3.9.3
WordPress Tutor LMS - eLearning and online course solution plugin <= 3.9.3 - Missing Authorization to Authenticated (Subscriber+) Course Enrollment Bypass vulnerability
4.3
11 minutes ago
WP Google Street View
<= 1.1.8
Authenticated (Contributor+) Stored Cross-Site Scripting via 'wpgsv_map' Shortcode vulnerability
6.5
18 minutes ago
Bulk Auto Image Alt Text (Alt tag, Alt attribute) optimization (image SEO) + Woocommerce
<= 2.2.1
WordPress BIALTY - Bulk Image Alt Text (Alt tag, Alt Attribute) with Yoast SEO + WooCommerce plugin <= 2.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
19 minutes ago
BetterDocs
<= 4.3.3
Authenticated (Contributor+) Sensitive Information Exposure vulnerability
6.5
20 minutes ago
IndieWeb
<= 4.0.5
Authenticated (Author+) Stored Cross-Site Scripting via 'Telephone' Parameter vulnerability
5.9
21 minutes ago
Forminator
<= 1.49.1
Missing Authorization to Authenticated (Forminator User+) CSV Export vulnerability
5.3
24 minutes ago
Post Expirator
<= 4.9.3
Missing Authorization to Authenticated (Contributor+) Workflow Manipulation vulnerability
5.4
27 minutes ago
Clearfy Cache
<= 2.4.0
Cross-Site Request Forgery to Update Notification Tampering vulnerability
4.3
29 minutes ago
weDocs
<= 2.1.15
Unauthenticated Sensitive Information Exposure vulnerability
5.3
29 minutes ago
Japanized For WooCommerce
<= 2.7.17
Missing Authorization to Unauthenticated Order Status Modification vulnerability
5.3
31 minutes ago
Tutor LMS
<= 3.9.3
Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure via tutor_order_details vulnerability
6.5
16 hours ago
Gutenverse Form
<= 2.3.2
Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload vulnerability
5.9
1 day ago
Folders
<= 3.1.5
Missing Authorization to Authenticated (Author+) Media Replacement vulnerability
4.3
1 day ago
Block Slider
<= 2.2.3
Broken Access Control vulnerability
6.5
1 day ago
Handmade Framework
<= 3.9
Local File Inclusion vulnerability
7.5
1 day ago
MediaPress
<= 1.6.2
Cross Site Scripting (XSS) vulnerability
6.5
1 day ago
Load more