Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
46,933
Mitigations
Mitigation rules
15,236
No official patch
13,387
In triage
1,553
Published soon
7
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Notify Odoo
<= 1.0.1
Cross-Site Request Forgery to Settings Update vulnerability
4.3
4 hours ago
NEX-Forms
<= 9.1.12
Authenticated (Administrator+) SQL Injection vulnerability
7.6
4 hours ago
Essential Addons for Elementor
<= 6.5.13
Authenticated (Author+) Limited Privilege Escalation vulnerability
6.5
11 hours ago
ManageWP Worker
<= 4.9.31
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
11 hours ago
Interactive Geo Maps
<= 1.6.27
Interactive Geo Maps plugin <= 1.6.27 - Interactive Geo Maps <= 1.6.27 - Reflected Cross-Site Scripting vulnerability
7.1
12 hours ago
Taskbuilder
<= 5.0.6
Authenticated (Subscriber+) Time-Based Blind SQL Injection vulnerability
8.5
12 hours ago
InfusedWoo Pro
<= 5.1.2
Unauthenticated Arbitrary File Read vulnerability
7.2
12 hours ago
InfusedWoo Pro
<= 5.1.2
Unauthenticated Missing Authorization to Arbitrary Post Deletion vulnerability
9.1
12 hours ago
InfusedWoo Pro
<= 5.1.2
Authenticated (Subscriber+) Missing Authorization to Privilege Escalation vulnerability
8.8
12 hours ago
InfusedWoo Pro
<= 5.1.2
Unauthenticated Missing Authorization to Privilege Escalation vulnerability
9.8
12 hours ago
Motors
<= 1.4.107
Authenticated (Subscriber+) Arbitrary File Deletion vulnerability
8.1
13 hours ago
FluentForm
<= 6.2.0
Authenticated (Subscriber+) Authorization Bypass vulnerability
8.2
13 hours ago
FluentForm
<= 6.1.21
Authenticated (Subscriber+) Authorization Bypass vulnerability
8.2
13 hours ago
Career Section
<= 1.7
Unauthenticated Arbitrary File Upload vulnerability
10
13 hours ago
Burst Statistics
3.4.0-3.4.1.1
Privacy-Friendly WordPress Analytics (Google Analytics Alternative) plugin 3.4.0-3.4.1.1 - 3.4.1.1 - Authentication Bypass to Admin Account Takeover vulnerability
9.8
13 hours ago
The7
<= 14.3.2
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
23 hours ago
FOX
<= 1.4.5
Missing Authorization to Authenticated (Contributor+) Configuration Deletion vulnerability
8.1
23 hours ago
Royal Elementor Addons
<= 1.7.1058
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
User Registration
<= 5.1.5
Unauthenticated Missing Authorization to Admin Approval Bypass vulnerability
5.3
1 day ago
MW WP Form
<= 5.1.2
Insecure Direct Object Reference to Unauthenticated Sensitive Information Disclosure vulnerability
5.3
1 day ago
Load more