Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
37,448
Mitigations
Mitigation rules
13,770
No official fix
10,768
In triage
1,258
Published soon
1
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
WPvivid Backup and Migration
<= 0.9.120
Authenticated (Admin+) Arbitrary Directory Creation vulnerability
2.7
1 hour ago
KiotViet Sync
<= 1.8.5
Missing Authorization to Authenticated (Subscriber+) Settings Update vulnerability
4.3
1 hour ago
Subscriptions & Memberships for PayPal
<= 1.1.7
Unauthenticated Fake Payment Creation vulnerability
5.3
1 hour ago
g-FFL Cockpit
<= 1.7.1
Missing Authorization to Unauthenticated Information Exposure vulnerability
5.3
1 hour ago
Premmerce Brands for WooCommerce
<= 1.2.13
Missing Authorization To Authenticated (Subscriber+) Brand Permalink Settings Update vulnerability
4.3
1 hour ago
Shortcodes Ultimate
<= 7.4.5
Authenticated (Administrator+) Server-Side Request Forgery vulnerability
5.5
1 hour ago
Booking Calendar
<= 10.14.6
Authenticated (Contributor+) Stored Cross-Site Scripting via bookingcalendar Shortcode vulnerability
6.5
1 hour ago
Funnel Builder by FunnelKit
<= 3.13.1.2
Authenticated (Contributor+) Stored Cross-Site Scripting via wfop_phone Shortcode vulnerability
6.5
1 hour ago
Survey Maker
<= 5.1.9.4
Missing Authorization to Unauthenticated Limited Option Update vulnerability
5.3
1 hour ago
Ultimate Blocks
<= 3.2.7
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
6.5
1 hour ago
SurveyJS
<= 1.12.20
Cross-Site Request Forgery to Survey Creation vulnerability
4.3
1 hour ago
Contentstudio
<= 1.3.7
Cross-Site Request Forgery to Settings Update vulnerability
4.3
1 hour ago
SurveyJS
<= 1.12.20
Cross-Site Request Forgery to Survey Renaming vulnerability
4.3
1 hour ago
SurveyJS
<= 1.12.20
Cross-Site Request Forgery to Survey Deletion vulnerability
4.3
1 hour ago
SurveyJS
<= 1.12.20
Cross-Site Request Forgery to Survey Cloning vulnerability
4.3
2 hours ago
Shortcodes and extra features for Phlox theme
<= 2.17.13
Unauthenticated Draft Posts Information Exposure vulnerability
5.3
2 hours ago
Ultimate Member
<= 2.11.0
Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes vulnerability
6.5
2 hours ago
CodeConfig Accessibility
<= 1.0.2
Authenticated (Subscriber+) Missing Authorization to Modify Accessibility Settings vulnerability
4.3
2 hours ago
CRM Memberships
<= 2.5
Missing Authorization to Unauthenticated 'ntzcrm_add_new_tag' AJAX Action vulnerability
5.3
2 hours ago
Quantic Social Image Hover
<= 1.0.8
Cross-Site Request Forgery to Settings Update vulnerability
4.3
2 hours ago
Load more