The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing

Rated 4.9

Total47,557

MitigationsMitigation rules15,324

No official patch12,921

In triage1,505

Published soon57

StatsWordPress stats

CVSS0

Mitigation available

Exploited

Affected software \| Vulnerability	Risk	Disclosed
Unlimited Elements For Elementor (Free Widgets, Addons, Templates)<= 2.0.8 SQL Injection vulnerability	8.5	04/06/2026
Sunshine Photo Cart<= 3.6.7 Broken Access Control vulnerability	6.3	02/06/2026
SePay Gateway<= 1.1.20 Sensitive Data Exposure vulnerability	6.5	02/06/2026
Taxi Booking Manager for WooCommerce<= 2.0.1 Broken Access Control vulnerability	5.3	3 hours ago
Tiktok Feed<= 1.0.24 Broken Access Control vulnerability	4.3	3 hours ago
WpBookingly<= 1.2.9 Broken Access Control vulnerability	4.3	3 hours ago
WpTravelly<= 2.1.5 Broken Access Control vulnerability	6.3	3 hours ago
Paid Videochat Turnkey Site<= 7.3.23 Broken Access Control vulnerability	5.3	14 hours ago
RepairBuddy<= 4.1121 Broken Access Control vulnerability	4.3	14 hours ago
Geo Mashup<= 1.13.18 Cross Site Scripting (XSS) vulnerability	6.5	14 hours ago
Nyla<= 1.7 Arbitrary Shortcode Execution vulnerability	5.3	14 hours ago
SW Core<= 1.7.18 Local File Inclusion vulnerability	7.5	15 hours ago
Mayosis Core<= 5.4.7 Broken Access Control vulnerability	5.3	16 hours ago
NanoCare< 1.2.2 Broken Access Control vulnerability	5.4	1 day ago
CformsII<= 15.1.3 Cross Site Request Forgery (CSRF) vulnerability	7.1	1 day ago
Broadcast Live Video< 7.1.3 Remote Code Execution (RCE) vulnerability	7.2	1 day ago
WP Search Analytics< 1.5.0 Broken Access Control vulnerability	5.3	1 day ago
RSVP and Event Management<= 2.7.16 Broken Access Control vulnerability	5.3	1 day ago
B2BKing< 5.2.10 Broken Access Control vulnerability	4.9	1 day ago
WPSubscription<= 1.9.1 Cross Site Request Forgery (CSRF) vulnerability	4.3	1 day ago