The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing

Rated 4.9

Total47,424

MitigationsMitigation rules15,253

No official patch12,918

In triage1,591

Published soon4

StatsWordPress stats

CVSS0

Mitigation available

Exploited

Affected software \| Vulnerability	Risk	Disclosed
AcyMailing SMTP Newsletter<= 10.8.2 Missing Authorization to Authenticated (Subscriber+) Privilege Escalation vulnerability	8.8	7 minutes ago
Creative Mail<= 1.6.9 Unauthenticated SQL Injection vulnerability	9.3	8 minutes ago
Infility Global<= 2.15.16 Authenticated (Subscriber+) SQL Injection vulnerability	8.5	8 minutes ago
Kirki – Freeform Page Builder, Website Builder & Customizer<= 6.0.6 Unauthenticated Limited Arbitrary File Read and Deletion vulnerability	7.5	8 minutes ago
Zoho ZeptoMail<= 3.2.9 Broken Access Control vulnerability	4.3	3 hours ago
CF7 WOW Styler<= 1.7.6 Broken Access Control vulnerability	5.3	3 hours ago
Mail Mint<= 1.19.5 Sensitive Data Exposure vulnerability	4.3	3 hours ago
Piotnet Addons For Elementor Pro<= 7.1.70 Unauthenticated Arbitrary File Upload vulnerability	10	4 hours ago
Piotnet Forms<= 2.1.40 Unauthenticated Arbitrary File Upload vulnerability	10	4 hours ago
Account Switcher<= 1.0.2 Authenticated (Subscriber+) Authentication Bypass to Privilege Escalation vulnerability	8.8	4 hours ago
ProSolution WP Client<= 2.0.0 Unauthenticated Arbitrary File Upload vulnerability	10	4 hours ago
Easy Elements for Elementor – Addons & Website Templates<= 1.4.4 Unauthenticated Privilege Escalation vulnerability	9.8	4 hours ago
Advanced Database Cleaner – Premium<= 4.1.0 Authenticated (Subscriber+) Local File Inclusion vulnerability	8.8	4 hours ago
Gift Cards For WooCommerce Pro<= 4.2.6 Arbitrary File Upload vulnerability	10	18 hours ago
WPB Floating Menu or Categories – Sticky Floating Side Menu & Categories with Icons<= 1.0.8 Authenticated (Editor+) Stored Cross-Site Scripting vulnerability	5.9	21 hours ago
Broadstreet Ads<= 1.52.2 Authenticated (Subscriber+) Private Post Meta Disclosure vulnerability	4.3	22 hours ago
YITH WooCommerce Product Add-Ons<= 4.29.0 SQL Injection vulnerability	7.6	22 hours ago
Visualizer< 4.0.0 Cross Site Scripting (XSS) vulnerability	6.5	22 hours ago
WpBookingly<= 1.2.9 Broken Access Control vulnerability	6.5	23 hours ago
Image Photo Gallery Final Tiles Grid<= 3.6.11 Broken Access Control vulnerability	4.3	23 hours ago