Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
37,597
Mitigations
Mitigation rules
13,798
No official fix
10,780
In triage
1,257
Published soon
1
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
OSM
<= 6.0.3
Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
6.5
27 minutes ago
Content Blocks (Custom Post Widget)
<= 3.3.0
Authenticated (Contributor+) Stored Cross-Site Scripting via content_block Shortcode vulnerability
6.5
27 minutes ago
Email Subscribers & Newsletters
<= 5.7.17
WordPress Email Subscribers by Icegram Express - Email Marketing, Newsletters, Automation for WordPress & WooCommerce plugin <= 5.7.17 - Missing Authorization vulnerability
4.3
28 minutes ago
Livemesh Addons for Elementor
<= 8.3.7
Authenticated (Contributor+) Stored Cross-Site Scripting via Posts Grid vulnerability
6.5
28 minutes ago
Premium Addons for Elementor
<= 4.10.28
Authenticated (Contributor+) Stored Cross-Site Scripting via 'arrow_style' vulnerability
6.5
29 minutes ago
Advanced Contact form 7 DB
<= 2.0.2
Sensitive Information Exposure vulnerability
5.3
35 minutes ago
Enter Addons
<= 2.1.5
Authenticated (Contributor+) Stored Cross-Site Scripting via Animation Title widget img tag vulnerability
6.5
35 minutes ago
Happy Addons for Elementor
<= 3.10.4
Authenticated (Contributor+) Stored Cross-Site Scripting via Image Stack Group, Photo Stack, & Horizontal Timeline vulnerability
6.5
36 minutes ago
Login Logout Register Menu
<= 2.0
Authenticated (Contributor+) Stored Cross-Site Scripting via 'llrmloginlogout' Shortcode vulnerability
6.5
40 minutes ago
Testimonial Carousel For Elementor
<= 10.1.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
40 minutes ago
Essential Addons for Elementor
<= 5.9.15
Authenticated (Contributor+) Stored Cross-Site Scripting via Filterable Gallery & Interactive Circle vulnerability
6.5
41 minutes ago
Porto Theme - Functionality
<= 3.0.9
WordPress Porto Theme - Functionality plugin <= 3.0.9 - Authenticated (Contributor+) Local File Inclusion via Post Meta vulnerability
7.5
42 minutes ago
Salient Shortcodes
<= 1.5.3
Authenticated (Contributor+) Local File Inclusion via Shortcode vulnerability
7.5
42 minutes ago
Royal Elementor Addons
<= 1.3.971
Authenticated (Contributor+) Stored Cross-Site Scripting via Advanced Accordion Title Tags vulnerability
6.5
43 minutes ago
Salient Core
<= 2.0.7
Authenticated (Contributor+) Local File Inclusion via Shortcode vulnerability
7.5
43 minutes ago
Salient Shortcodes
<= 1.5.3
Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
6.5
43 minutes ago
WP To Do
<= 1.3.0
Cross-Site Request Forgery via wptodo_manage() vulnerability
4.3
45 minutes ago
WP To Do
<= 1.3.0
Authenticated (Admin+) Stored Cross-Site Scripting via Task Comments vulnerability
5.9
45 minutes ago
Testimonials Widget
<= 4.0.4
Authenticated (Author+) Stored Cross-Site Scripting via testimonials Shortcode vulnerability
6.5
46 minutes ago
HT Mega
<= 2.5.0
Authenticated (Contributor+) Stored Cross-Site Scripting via Gallery Justify vulnerability
6.5
46 minutes ago
Load more