Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
46,736
Mitigations
Mitigation rules
15,124
No official patch
13,395
In triage
1,529
Published soon
2
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
EmailKit
<= 1.6.5
Authenticated (Author+) Arbitrary File Read vulnerability
6.5
10 hours ago
Gutenverse
<= 3.5.3
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
11 hours ago
Charts Ninja: Create Beautiful Graphs & Charts and Easily Add Them to Your Website
<= 2.1.0
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
11 hours ago
Publish 2 Ping.fm
<= 1.1
Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability
6.1
11 hours ago
addfreespace
<= 0.1.3
Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability
4.3
11 hours ago
DX Sources
<= 2.0.1
Cross-Site Request Forgery to Settings Update vulnerability
4.3
11 hours ago
WP-Clippy
<= 1.0.0
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
11 hours ago
Simple Owl Shortcodes
<= 2.1.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
11 hours ago
Post Expirator
<= 4.10.0
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
5.9
11 hours ago
Loco Translate
<= 2.8.2
Authenticated (Translator+) Path Traversal to Limited File Read vulnerability
4.9
11 hours ago
Event Tickets
<= 5.27.5
Bypass Vulnerability vulnerability
6.5
2 days ago
Premium Addons for Elementor
<= 4.11.70
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
Total
<= 2.2.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
Royal Elementor Addons
<= 1.7.1056
Missing Authorization to Unauthenticated Form Action Meta Modification vulnerability
5.3
3 days ago
FundPress
<= 2.0.8
Missing Authorization to Unauthenticated Arbitrary Donation Status Modification vulnerability
5.3
3 days ago
Amelia
<= 2.1.2
Unauthenticated Authorization Bypass vulnerability
5.3
3 days ago
WP Customer Area
<= 8.3.4
Path Traversal vulnerability
8.8
3 days ago
Jeg Elementor Kit
<= 3.1.0
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
Essential Blocks for Gutenberg
<= 6.0.4
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
3 days ago
App Builder
<= 5.6.0
Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary User Avatar Modification vulnerability
5.3
3 days ago
Load more