Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
48,018
Mitigations
Mitigation rules
15,547
No official patch
12,965
In triage
1,528
Published soon
20
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
WooCommerce Stripe Payment Gateway
<= 10.7.0
Missing Authorization to Unauthenticated Order Status Manipulation vulnerability
6.5
2 hours ago
User Private Files
<= 2.1.6
Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability
6.5
2 hours ago
WP Review Slider Pro
<= 12.6.8
Authenticated (Subscriber+) SQL Injection vulnerability
8.5
2 hours ago
WP Review Slider Pro
<= 12.6.8
Authenticated (Subscriber+) SQL Injection vulnerability
8.5
2 hours ago
WP Review Slider Pro
<= 12.6.8
Authenticated (Subscriber+) Arbitrary File Deletion vulnerability
7.7
2 hours ago
Premmerce Dev Tools
<= 2.0
Missing Authorization to Authenticated (Subscriber+) Remote Code Execution vulnerability
8.8
3 hours ago
RTMKit
<= 2.0.7
Authenticated (Contributor+) Missing Authorization to Arbitrary Form Submission Access vulnerability
6.5
17 hours ago
Static Block
<= 2.2
Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Disclosure vulnerability
4.3
18 hours ago
Abandoned Contact Form 7
<= 2.2
Missing Authorization to Unauthenticated Arbitrary Post Deletion vulnerability
5.3
18 hours ago
Video Conferencing with Zoom
<= 4.6.7
Missing Authorization to Unauthenticated Zoom SDK Credential Exposure vulnerability
5.3
20 hours ago
Bookly
<= 27.2
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
1 day ago
GPTranslate – Multilingual AI Translation for WordPress: Automatically Translate Websites
<= 2.31
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
1 day ago
WP Ticket Customer Service Software & Support Ticket System
<= 6.0.4
Unauthenticated SQL Injection vulnerability
9.3
1 day ago
Hash Elements
<= 1.5.4
Sensitive Data Exposure vulnerability
4.3
3 days ago
Meow Gallery
<= 5.4.4
Missing Authorization to Authenticated (Author+) Shortcode creation vulnerability
4.3
3 days ago
PageLayer
<= 2.0.9
Incorrect Authorization to Authenticated (Contributor+) Mail Relay Configuration vulnerability
4.3
3 days ago
PageLayer
<= 2.0.9
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
Canvas
<= 2.5.2
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
FooGallery
<= 3.1.31
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
LWS Optimize
<= 3.3.19
Authenticated (Editor+) Arbitrary File Read vulnerability
4.9
3 days ago
Load more