Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
38,306
Mitigations
Mitigation rules
14,044
No official fix
10,906
In triage
1,451
Published soon
5
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
EventPrime
<= 4.2.8.4
Missing Authorization to Unauthenticated Image Upload via 'ep_upload_file_media' AJAX Endpoint vulnerability
5.3
5 hours ago
Forminator
<= 1.50.2
WordPress Forminator Forms - Contact Form, Payment Form & Custom Form Builder plugin <= 1.50.2 - Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
5.9
5 hours ago
RegistrationMagic
< 6.0.7.2
Subscriber+ Form Creation vulnerability
4.3
5 hours ago
WP-Members
<= 3.4.8
Missing Authorization to Sensitive Information Exposure vulnerability
6.5
5 hours ago
Easy Social Feed
<= 6.5.2
Missing Authorization to Settings Modification vulnerability
4.3
9 hours ago
Backup Migration
<= 1.3.9
Authenticated (Admin+) OS Command Injection via url vulnerability
7.2
9 hours ago
Auto Featured Image (Auto Post Thumbnail)
<= 4.1.7
Authenticated (Author+) Server-Side Request Forgery vulnerability
6.4
9 hours ago
Paytium
<= 4.3.7
Missing Authorization in 'pt_cancel_subscription' vulnerability
5.4
9 hours ago
Paytium
<= 4.3.7
Missing Authorization in 'update_profile_preference' vulnerability
5.4
9 hours ago
Paytium
<= 4.3.7
Missing Authorization in 'paytium_sw_save_api_keys' vulnerability
5.4
9 hours ago
Paytium
<= 4.3.7
Missing Authorization in 'check_for_verified_profiles' vulnerability
4.3
9 hours ago
Paytium
<= 4.3.7
Missing Authorization in 'paytium_notice_dismiss' vulnerability
4.3
9 hours ago
Paytium
<= 4.3.7
Missing Authorization in 'check_mollie_account_details' vulnerability
4.3
9 hours ago
personal-authors-category
<= 0.3
Reflected Cross-Site Scripting vulnerability
7.1
16 hours ago
Secure Copy Content Protection and Content Locking
<= 4.9.8
Unauthenticated Stored Cross-Site Scripting via X-Forwarded-For Header vulnerability
7.1
16 hours ago
Customer Reviews for WooCommerce
<= 5.97.0
Unauthenticated Stored Cross-Site Scripting via media[].href Parameter vulnerability
7.1
16 hours ago
WP System Log
<= 1.2.8
Missing Authorization to Sensitive Information Exposure via Log File vulnerability
6.5
17 hours ago
Converter for Media
<= 6.5.1
WordPress Converter for Media - Optimize images | Convert WebP & AVIF plugin <= 6.5.1 - Unauthenticated Server-Side Request Forgery via src vulnerability
7.2
17 hours ago
Uni CPO (Premium)
<= 4.9.60
WordPress Product Options and Price Calculation Formulas for WooCommerce - Uni CPO (Premium) plugin <= 4.9.60 - Missing Authorization to Unauthenticated Arbitrary Attachment and Dropbox File Deletion vulnerability
5.8
20 hours ago
BlueSnap Payment Gateway for WooCommerce
<= 3.3.0
Missing Authorization to Unauthenticated Arbitrary Order Status Manipulation vulnerability
7.5
20 hours ago
Load more