Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
37,518
Mitigations
Mitigation rules
13,797
No official fix
10,780
In triage
1,257
Published soon
1
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
Element Pack Elementor Addons
<= 5.6.11
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
5 minutes ago
Tutor LMS Elementor Addons
<= 2.1.4
Authenticated (Contributor+) Stored Cross-Site Scripting via Course Carousel Widget vulnerability
6.5
6 minutes ago
The Plus Addons for Elementor Page Builder Lite
<= 5.6.2
WordPress The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin <= 5.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Testimonials Widget Settings vulnerability
6.5
7 minutes ago
Affiliate Manager
< 6.5.1
Reflected XSS via Affiliate Editing vulnerability
7.1
9 minutes ago
Affiliate Manager
< 6.5.1
Reflected XSS via Registration Form vulnerability
7.1
10 minutes ago
ARMember Premium
<= 6.7
Cross-Site Request Forgery via multiple functions vulnerability
6.3
10 minutes ago
Affiliate Manager
< 6.5.1
Reflected XSS via Lead Editing vulnerability
7.1
10 minutes ago
Affiliate Manager
< 6.5.1
Reflected XSS via Banner Editing vulnerability
7.1
11 minutes ago
GiveWP
<= 3.14.1
WordPress GiveWP - Donation Plugin and Fundraising Platform plugin <= 3.14.1 - Unauthenticated PHP Object Injection to Remote Code Execution vulnerability
10
12 minutes ago
WP Featherlight
<= 1.3.4
Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Featherlight.js JavaScript Library vulnerability
6.5
19 minutes ago
WP eStore
< 8.5.5
Reflected XSS in Discount Editing vulnerability
7.1
20 minutes ago
Responsive Lightbox
<= 2.4.7
Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Featherlight.js JavaScript Library vulnerability
6.5
21 minutes ago
WP eStore
< 8.5.5
Reflected XSS in Customer Editing vulnerability
7.1
21 minutes ago
WP eStore
< 8.5.5
Reflected XSS in Category Editing vulnerability
7.1
21 minutes ago
WP eStore
< 8.5.6
Reflected XSS in Product Editing vulnerability
7.1
22 minutes ago
WP eMember
< 10.6.6
Reflected XSS vulnerability
7.1
23 minutes ago
Funnelforms Free
<= 3.7.3.2
WordPress Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor - Funnelforms Free plugin <= 3.7.3.2 - Missing Authorization to Unauthenticated Arbitrary Media Deletion vulnerability
5.3
24 minutes ago
SP Project & Document Manager
<= 4.71
Subscriber+ File Download via IDOR vulnerability
4.3
25 minutes ago
Feedify – Web Push Notifications
< 2.4.6
WordPress Feedify - Web Push Notifications plugin < 2.4.6 - Reflected XSS vulnerability
7.1
26 minutes ago
Newsletter Popup
<= 1.2
Unauthenticated Stored XSS vulnerability
7.1
27 minutes ago
Load more