Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
46,742
Mitigations
Mitigation rules
15,124
No official patch
13,395
In triage
1,529
Published soon
2
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
GenerateBlocks
<= 2.2.0
Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Exposure vulnerability
6.5
8 hours ago
Forminator
<= 1.52.0
Missing Authorization to Unauthenticated Stripe PaymentIntent Reuse / Underpayment Bypass vulnerability
5.3
8 hours ago
Carousel, Slider, Gallery by WP Carousel
<= 2.7.10
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
11 hours ago
Royal Elementor Addons
<= 1.7.1056
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
7.1
11 hours ago
Gutenverse
<= 3.5.3
Authenticated (Contributor+) Server-Side Request Forgery vulnerability
6.4
11 hours ago
EmailKit
<= 1.6.5
Authenticated (Author+) Arbitrary File Read vulnerability
6.5
11 hours ago
Gutenverse
<= 3.5.3
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
11 hours ago
Charts Ninja: Create Beautiful Graphs & Charts and Easily Add Them to Your Website
<= 2.1.0
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
12 hours ago
Publish 2 Ping.fm
<= 1.1
Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability
6.1
12 hours ago
addfreespace
<= 0.1.3
Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability
4.3
12 hours ago
DX Sources
<= 2.0.1
Cross-Site Request Forgery to Settings Update vulnerability
4.3
12 hours ago
WP-Clippy
<= 1.0.0
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
12 hours ago
Simple Owl Shortcodes
<= 2.1.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
12 hours ago
Post Expirator
<= 4.10.0
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
5.9
12 hours ago
Loco Translate
<= 2.8.2
Authenticated (Translator+) Path Traversal to Limited File Read vulnerability
4.9
12 hours ago
Event Tickets
<= 5.27.5
Bypass Vulnerability vulnerability
6.5
2 days ago
Premium Addons for Elementor
<= 4.11.70
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
Total
<= 2.2.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
Royal Elementor Addons
<= 1.7.1056
Missing Authorization to Unauthenticated Form Action Meta Modification vulnerability
5.3
3 days ago
FundPress
<= 2.0.8
Missing Authorization to Unauthenticated Arbitrary Donation Status Modification vulnerability
5.3
3 days ago
Load more