The leading open source vulnerability database

Instantly mitigate vulnerabilities in WordPress websites with Patchstack.

See pricing

Rated 4.9

Total36,311

MitigationsMitigation rules13,355

No official fix10,336

In triage1,157

Published soon2

StatsWordPress stats

CVSS0

Mitigation available

Exploited

Affected software \| Vulnerability	Risk	Disclosed
ShopBuilder – Elementor WooCommerce Builder Addons< 3.2.2 Reflected XSS vulnerability	7.1	1 day ago
Branda<= 3.4.24 WordPress Branda - White Label & Branding, Free Login Page Customizer plugin <= 3.4.24 - Unauthenticated Privilege Escalation via Account Takeover vulnerability	9.8	1 day ago
Logo Slider< 4.9.0 Contributor+ Stored XSS vulnerability	6.5	1 day ago
WPBookit<= 1.0.7 Customer Deletion via CSRF vulnerability	5.4	1 day ago
WP User Frontend<= 4.2.4 Missing Authorization to Unauthenticated Arbitrary Attachment Deletion vulnerability	7.5	1 day ago
Bookory<= 2.2.7 Local File Inclusion vulnerability	7.5	2 days ago
Aruba HiSpeed Cache< 3.0.3 Broken Access Control vulnerability	6.5	2 days ago
FreeAgent<= 2.1.2 Local File Inclusion vulnerability	8.1	2 days ago
Issabella<= 1.1.2 Local File Inclusion vulnerability	8.1	2 days ago
Frappé<= 1.8 Local File Inclusion vulnerability	8.1	2 days ago
Hope<= 3.0.0 Local File Inclusion vulnerability	8.1	2 days ago
Gecko<= 1.9.8 Local File Inclusion vulnerability	8.1	2 days ago
wpDiscuz< 7.6.40 WordPress Comments - wpDiscuz plugin < 7.6.40 - Unauthenticated Account Takeover vulnerability	9.8	2 days ago
WP Ultimate CSV Importer<= 7.35 WordPress WP Import - Ultimate CSV XML Importer for WordPress plugin <= 7.35 - Authenticated (Contributor+) Server-Side Request Forgery via Bitly Shortlink Bypass vulnerability	6.4	2 days ago
User Submitted Posts<= 20251121 Open Redirection vulnerability	4.7	2 days ago
Worker for Elementor<= 1.0.10 Broken Access Control vulnerability	5.4	3 days ago
Worker for WPBakery<= 1.1.1 Broken Access Control vulnerability	5.4	3 days ago
Logger for Elementor<= 1.0.9 Broken Access Control vulnerability	5.4	3 days ago
Conformer for Elementor<= 1.0.7 Broken Access Control vulnerability	5.4	3 days ago
UnGrabber<= 3.1.3 Broken Access Control vulnerability	5.4	3 days ago