Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
37,448
Mitigations
Mitigation rules
13,770
No official fix
10,768
In triage
1,258
Published soon
1
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
WPvivid Backup and Migration
<= 0.9.120
Authenticated (Admin+) Arbitrary Directory Creation vulnerability
2.7
14 minutes ago
KiotViet Sync
<= 1.8.5
Missing Authorization to Authenticated (Subscriber+) Settings Update vulnerability
4.3
14 minutes ago
Subscriptions & Memberships for PayPal
<= 1.1.7
Unauthenticated Fake Payment Creation vulnerability
5.3
15 minutes ago
g-FFL Cockpit
<= 1.7.1
Missing Authorization to Unauthenticated Information Exposure vulnerability
5.3
15 minutes ago
Premmerce Brands for WooCommerce
<= 1.2.13
Missing Authorization To Authenticated (Subscriber+) Brand Permalink Settings Update vulnerability
4.3
18 minutes ago
Shortcodes Ultimate
<= 7.4.5
Authenticated (Administrator+) Server-Side Request Forgery vulnerability
5.5
19 minutes ago
Booking Calendar
<= 10.14.6
Authenticated (Contributor+) Stored Cross-Site Scripting via bookingcalendar Shortcode vulnerability
6.5
21 minutes ago
Funnel Builder by FunnelKit
<= 3.13.1.2
Authenticated (Contributor+) Stored Cross-Site Scripting via wfop_phone Shortcode vulnerability
6.5
24 minutes ago
Survey Maker
<= 5.1.9.4
Missing Authorization to Unauthenticated Limited Option Update vulnerability
5.3
26 minutes ago
Ultimate Blocks
<= 3.2.7
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
32 minutes ago
SurveyJS
<= 1.12.20
Cross-Site Request Forgery to Survey Creation vulnerability
4.3
32 minutes ago
Contentstudio
<= 1.3.7
Cross-Site Request Forgery to Settings Update vulnerability
4.3
34 minutes ago
SurveyJS
<= 1.12.20
Cross-Site Request Forgery to Survey Renaming vulnerability
4.3
34 minutes ago
SurveyJS
<= 1.12.20
Cross-Site Request Forgery to Survey Deletion vulnerability
4.3
34 minutes ago
SurveyJS
<= 1.12.20
Cross-Site Request Forgery to Survey Cloning vulnerability
4.3
35 minutes ago
Shortcodes and extra features for Phlox theme
<= 2.17.13
Unauthenticated Draft Posts Information Exposure vulnerability
5.3
36 minutes ago
Ultimate Member
<= 2.11.0
Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes vulnerability
6.5
37 minutes ago
CodeConfig Accessibility
<= 1.0.2
Authenticated (Subscriber+) Missing Authorization to Modify Accessibility Settings vulnerability
4.3
37 minutes ago
CRM Memberships
<= 2.5
Missing Authorization to Unauthenticated 'ntzcrm_add_new_tag' AJAX Action vulnerability
5.3
38 minutes ago
Quantic Social Image Hover
<= 1.0.8
Cross-Site Request Forgery to Settings Update vulnerability
4.3
39 minutes ago
Load more