Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
46,861
Mitigations
Mitigation rules
15,188
No official patch
13,396
In triage
1,545
Published soon
8
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Tutor LMS
<= 3.9.9
Insecure Direct Object Reference to Authenticated (Instructor+) Arbitrary Post Deletion vulnerability
5.3
15 hours ago
Woocommerce Support System
<= 1.3.0
Missing Authorization to Unauthenticated Sensitive Information Exposure vulnerability
5.3
15 hours ago
Hustle
<= 7.8.10.1
Broken Access Control vulnerability
5.3
16 hours ago
Cost of Goods for WooCommerce
<= 4.1.0
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
17 hours ago
Charitable
<= 1.8.10.4
Authenticated (Custom+) SQL Injection vulnerability
6.5
17 hours ago
Broadstreet Ads
<= 1.53.1
Missing Authorization to Authenticated (Subscriber+) Advertiser Creation vulnerability
4.3
17 hours ago
Broadstreet Ads
<= 1.53.1
Authenticated (Subscriber+) Information Disclosure vulnerability
5.3
17 hours ago
Broadstreet Ads
<= 1.53.1
Authenticated (Admin+) Stored Cross-Site Scripting vulnerability
5.9
17 hours ago
Blog2Social
<= 8.9.0
Missing Authorization to Authenticated (Subscriber+) Delete Arbitrary B2S Post Records vulnerability
5.4
17 hours ago
Cost Calculator Builder
<= 4.0.1
Unauthenticated Price Manipulation and Insecure Direct Object Reference vulnerability
5.3
17 hours ago
LifePress
<= 2.2.2
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
22 hours ago
WP Google Maps Integration
<= 1.2
Reflected Cross-Site Scripting vulnerability
7.1
22 hours ago
AzonPost
<= 1.3
Reflected Cross-Site Scripting vulnerability
7.1
22 hours ago
Pricing Tables for WP
<= 1.1.0
Reflected Cross-Site Scripting vulnerability
7.1
22 hours ago
Eight Day Week Print Workflow
<= 1.2.6
Authenticated (Subscriber+) SQL Injection vulnerability
8.5
22 hours ago
AIWU
<= 1.4.19
SQL Injection vulnerability
9.3
22 hours ago
Custom css-js-php
<= 2.0.7
Unauthenticated SQL Injection to RCE vulnerability
10
23 hours ago
ProfileGrid
<= 5.9.8.4
Missing Authorization to Authenticated (Subscriber+) Group Settings Modification vulnerability
4.3
1 day ago
FluentForm
<= 6.2.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
WPC Badge Management for WooCommerce
<= 3.1.6
Authenticated (Shop Manager+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
Load more