The leading open source vulnerability database

Patchstack finds & mitigates vulnerabilities in websites. Connect your sites for FREE to see if they are exposed to any vulnerabilities.

See pricing
Rated 4.6
Total35,579
Mitigation rules13,192
WordPress stats
CVSS0
10
Affected software | Vulnerability
Risk
Disclosed
Reviews Sorted<= 2.4.2
Authenticated (Contributor+) Stored Cross-Site Scripting via 'space' Shortcode Attribute vulnerability
6.5
1 hour ago
SimplyConvert<= 1.0
Authenticated (Administrator+) Stored Cross-Site Scripting via 'simplyconvert_hash' Option vulnerability
5.9
1 hour ago
LT Unleashed<= 1.1.1
Authenticated (Contributor+) Local File Inclusion via 'template' Parameter vulnerability
7.5
1 hour ago
LJUsers<= 1.2.0
Authenticated (Contributor+) Stored Cross-Site Scripting via 'name' Shortcode Attribute vulnerability
6.5
1 hour ago
WP Job Portal<= 2.4.0
Authenticated (Subscriber+) Arbitrary File Read vulnerability
6.5
8 hours ago
Elated Membership<= 1.2
Authentication Bypass via Social Login vulnerability
9.8
12 hours ago
WP CarDealer<= 1.2.16
Unauthenticated Privilege Escalation vulnerability
9.8
14 hours ago
Widgets for Google Reviews<= 13.2.1
Authenticated (Contributor+) Stored Cross-Site Scripting via trustindex Shortcode vulnerability
6.5
19 hours ago
List category posts<= 0.91.0
Authenticated (Contributor+) SQL Injection via Plugin's Shortcode vulnerability
8.5
19 hours ago
Feedzy<= 5.1.1
Unauthenticated Blind Server-Side Request Forgery vulnerability
5.4
19 hours ago
Simple Download Counter<= 2.2.2
Authenticated (Administrator+) Arbitrary File Read via Path Traversal vulnerability
4.9
1 day ago
Custom Admin Menu<= 1.0.0
Reflected XSS vulnerability
7.1
1 day ago
Hippoo Mobile App for WooCommerce<= 1.7.1
Unauthenticated Arbitrary File Read vulnerability
7.5
1 day ago
CSV to SortTable<= 4.2
Contributor+ LFI vulnerability
8.8
1 day ago
WPeMatico RSS Feed Fetcher< 2.8.13
Contributor+ Stored XSS vulnerability
6.5
1 day ago
Video Merchant<= 5.0.4
Cross-Site Request Forgery to Arbitrary File Upload vulnerability
9.6
1 day ago
SurveyFunnel<= 1.1.5
Unauthenticated Information Exposure vulnerability
5.3
2 days ago
SurveyFunnel<= 1.1.5
Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
6.5
2 days ago
Trust.Reviews<= 2.5
Unauthenticated Stored Cross-Site Scripting via Social Media Reviews vulnerability
7.1
2 days ago
Advanced Product Fields (Product Addons) for WooCommerce<= 1.6.17
Cross-Site Request Forgery to Product Field Group Duplication and Publication vulnerability
4.3
2 days ago