Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
47,740
Mitigations
Mitigation rules
15,397
No official patch
12,988
In triage
1,546
Published soon
17
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Unlimited Elements For Elementor (Free Widgets, Addons, Templates)
<= 2.0.8
SQL Injection vulnerability
8.5
04/06/2026
Sunshine Photo Cart
<= 3.6.7
Broken Access Control vulnerability
6.3
02/06/2026
SePay Gateway
<= 1.1.20
Sensitive Data Exposure vulnerability
6.5
02/06/2026
Kirki – Freeform Page Builder, Website Builder & Customizer
6.0.0-6.0.6
Unauthenticated Privilege Escalation via 'handle_forgot_password' vulnerability
9.8
6 hours ago
Gravity Forms
<= 2.10.0.1
Arbitrary File Deletion vulnerability
9.6
10 hours ago
LearnPress
<= 4.3.6
Reflected Cross Site Scripting (XSS) vulnerability
7.1
10 hours ago
WP Statistics
<= 14.16.6
Cross Site Scripting (XSS) vulnerability
7.1
14 hours ago
HT Contact Form 7
<= 2.8.2
Unauthenticated Stored Cross-Site Scripting via File Upload Field vulnerability
7.1
15 hours ago
GutenBee
<= 2.20.1
Authenticated (Author+) Arbitrary File Upload vulnerability
9.1
15 hours ago
Crawlomatic Multisite Scraper Post Generator
<= 2.7.2
Authenticated (Author+) Remote Code Execution vulnerability
8.8
15 hours ago
ACF Extended
<= 0.9.2.5
Unauthenticated Privilege Escalation vulnerability
9.8
15 hours ago
Backup and Staging by WP Time Capsule
<= 1.22.25
Broken Authentication vulnerability
7.5
2 days ago
Affiliate Super Assistent
<= 1.10.1
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
WebinarIgnition
< 4.08.253
Privilege Escalation vulnerability
9.8
2 days ago
WebinarIgnition
< 4.08.253
Arbitrary File Deletion vulnerability
9.9
2 days ago
QuickWebP – Compress / Optimize Images & Convert WebP | SEO Friendly
<= 3.2.7
Arbitrary File Deletion vulnerability
9.9
2 days ago
TableOn
<= 1.0.5.1
SQL Injection vulnerability
9.3
2 days ago
Favicon
<= 1.3.46
Cross Site Scripting (XSS) vulnerability
7.1
2 days ago
WCFM Membership
<= 2.11.10
Broken Access Control vulnerability
7.3
3 days ago
Stripe Payments
<= 2.0.98
Bypass Vulnerability vulnerability
6.5
3 days ago
Load more