Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
47,782
Mitigations
Mitigation rules
15,417
No official patch
12,989
In triage
1,550
Published soon
31
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear filters
Affected software | Vulnerability
Risk
Disclosed
Unlimited Elements For Elementor (Free Widgets, Addons, Templates)
<= 2.0.8
SQL Injection vulnerability
8.5
04/06/2026
Sunshine Photo Cart
<= 3.6.7
Broken Access Control vulnerability
6.3
2 hours ago
Elementor Website Builder
<= 4.1.0
Broken Access Control vulnerability
5.4
5 hours ago
Crew HRM
<= 1.2.2
Broken Access Control vulnerability
5.4
5 hours ago
Progress Planner
<= 1.9.0
Cross Site Scripting (XSS) vulnerability
5.9
5 hours ago
FPW Category Thumbnails
<= 1.9.5
Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability
6.5
11 hours ago
hiWeb Migration Simple
<= 2.0.0.1
Reflected Cross-Site Scripting vulnerability
7.1
11 hours ago
rognone
<= 0.6.2
Reflected Cross-Site Scripting vulnerability
7.1
11 hours ago
rognone
<= 0.6.2
Reflected Cross-Site Scripting vulnerability
7.1
11 hours ago
Simple Custom Login Page
<= 1.0.3
Authenticated (Admin+) Stored Cross-Site Scripting vulnerability
7.1
11 hours ago
Spectra
<= 2.19.25
Authenticated (Contributor+) Remote Code Execution vulnerability
8.8
11 hours ago
GEO my WordPress
<= 4.5.5
Unauthenticated SQL Injection vulnerability
9.3
11 hours ago
Simple History
<= 5.26.0
Authenticated (Subscriber+) Account Takeover vulnerability
7.5
11 hours ago
SePay Gateway
<= 1.1.20
Sensitive Data Exposure vulnerability
6.5
13 hours ago
Tiled Gallery Carousel Without JetPack
<= 3.1
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
Easy Cart
<= 1.8
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
ZeM STL
<= 1.0
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 day ago
BirdSeed
<= 2.2.0
Cross-Site Request Forgery vulnerability
4.3
1 day ago
Word Replacer
<= 0.4
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
WP Nano AD
<= 1.31
Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
5.9
1 day ago
Load more