Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
48,109
Mitigations
Mitigation rules
15,598
No official patch
12,949
In triage
1,534
Published soon
43
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Fusion Builder
<= 3.15.3
Unauthenticated Arbitrary File Deletion via Form Entry Value vulnerability
8.6
4 hours ago
WP EasyPay
<= 4.4.0
Cross Site Request Forgery (CSRF) vulnerability
6.5
6 hours ago
Media LIbrary Assistant
<= 3.35
SQL Injection vulnerability
8.5
7 hours ago
Ocean Product Sharing
<= 2.2.2
Cross Site Scripting (XSS) vulnerability
5.9
12 hours ago
CF7 to Webhook
<= 5.0.0
Unauthenticated Server-Side Request Forgery vulnerability
7.2
12 hours ago
Customize My Account for WooCommerce
<= 4.3.6
Reflected Cross-Site Scripting vulnerability
7.1
12 hours ago
Offload, AI & Optimize with Cloudflare Images
<= 1.10.2
Authenticated (Author+) Remote Code Execution vulnerability
8.8
13 hours ago
Contest Gallery
<= 30.0.2
Authenticated (Author+) Privilege Escalation vulnerability
7.2
13 hours ago
Slideshow Gallery
<= 1.8.5
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
Fancy Testimonials
<= 1.0
Authenticated (Author+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
Appointment Booking Calendar
<= 1.4.01
Authenticated (Contributor+) Sensitive Information Exposure vulnerability
4.3
1 day ago
PowerPress Podcasting
<= 11.16.8
Authenticated (Author+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
UsersWP
<= 1.2.63
Insecure Direct Object Reference to Authenticated (Editor+) Arbitrary User Avatar/Banner Reset vulnerability
2.7
1 day ago
Customize My Account for WooCommerce
<= 4.3.6
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
Tutor LMS
<= 3.9.11
Authenticated (Administrator+) SQL Injection vulnerability
7.6
1 day ago
Simple Membership
<= 4.7.5
Missing Authorization to Unauthenticated Arbitrary Member Account Deactivation vulnerability
5.3
1 day ago
Services Section block
<= 1.4.4
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
PressPrimer Quiz – AI Quiz Maker, Exam Builder & LMS Assessment Plugin
<= 2.3.0
Insecure Direct Object Reference to Authenticated (Custom+) Arbitrary Modification vulnerability
4.3
1 day ago
Orbit Fox by ThemeIsle
<= 3.0.6
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
Advanced Order Export For WooCommerce
<= 4.0.10
Authenticated (Shop Manager+) SQL Injection vulnerability
7.6
1 day ago
Load more