Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
37,936
Mitigations
Mitigation rules
13,846
No official fix
10,801
In triage
1,167
Published soon
13
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
Paid Memberships Pro
<= 2.12.7
Cross-Site Request Forgery to Level Orders Update vulnerability
4.3
1 hour ago
Awesome Support
<= 6.1.7
WordPress Awesome Support - WordPress HelpDesk & Support Plugin plugin <= 6.1.7 - Missing Authorization via editor_html() vulnerability
5.3
1 hour ago
Royal Elementor Addons
<= 1.3.87
Missing Authorization via wpr_update_form_action_meta vulnerability
5.3
1 hour ago
Royal Elementor Addons
<= 1.3.87
Cross-Site Request Forgery via add_to_compare vulnerability
4.3
1 hour ago
Royal Elementor Addons
<= 1.3.87
Cross-Site Request Forgery via remove_from_compare vulnerability
4.3
1 hour ago
Royal Elementor Addons
<= 1.3.87
Cross-Site Request Forgery via remove_from_wishlist vulnerability
4.3
1 hour ago
ChatBot
<= 5.3.4
Missing Authorization via openai_file_delete_callback vulnerability
5
1 hour ago
ChatBot
<= 5.3.4
Missing Authorization via openai_file_list_callback vulnerability
5
1 hour ago
The Plus Addons for Elementor Page Builder Lite
<= 5.4.2
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 hour ago
Gestpay for WooCommerce
<= 20221130
Cross-Site Request Forgery (CSRF) via ajax_delete_card vulnerability
4.3
1 hour ago
Gestpay for WooCommerce
<= 20221130
Cross-Site Request Forgery (CSRF) via ajax_unset_default_card vulnerability
4.3
1 hour ago
Categorify
<= 1.0.7.4
Missing Authorization in categorifyAjaxAddCategory vulnerability
4.3
1 hour ago
WP Recipe Maker
<= 9.1.0
Authenticated (Contributor+) Stored Cross-Site Scripting via 'group_tag' vulnerability
6.5
1 hour ago
WP Recipe Maker
<= 9.1.0
Authenticated (Contributor+) Stored Cross-Site Scripting via 'tag' vulnerability
6.5
1 hour ago
Views for WPForms
<= 3.2.2
Cross-Site Request Forgery via create_view vulnerability
4.3
1 hour ago
Views for WPForms
<= 3.2.2
Cross-Site Request Forgery via save_view vulnerability
4.3
1 hour ago
Views for WPForms
<= 3.2.2
Missing Authorization via create_view vulnerability
4.3
1 hour ago
Views for WPForms
<= 3.2.2
Missing Authorization via get_form_fields vulnerability
4.3
1 hour ago
Bulk Edit Post Titles
<= 5.0.0
Missing Authorization via bulkUpdatePostTitles vulnerability
4.3
1 hour ago
Jeg Elementor Kit
<= 2.6.4
Authenticated (Contributor+) Cross-Site Scripting via Elementor Widget URL Custom Attributes vulnerability
6.5
1 hour ago
Load more