Skip to main content
JavaScript is disabled in your browser. Please enable JavaScript for a better experience.
Pricing
Case studies
Login
Start trial
Latest
WordPress how-to's
Webinars
Security Suite
Plugin Recommendations
Supply Chain Attack
WordPress Security
Virtual Patches
Bug Bounty
WordPress Security 101
Events
Security Advice
Security Advisories
Patchstack News
Patchstack how-to's
account takeover
Author's position will be here
account takeover
Latest
WordPress Security 101
Plugin Recommendations
Security Advisories
Patchstack News
Case Studies
Bug Bounty
Search for:
18 September, 2025
Unauthenticated Broken Authentication Vulnerability in WordPress Jobmonster Theme
Critical Vulnerability
account takeover
broken authentication
3 September, 2025
Unpatched Privilege Escalation in Service Finder Bookings Plugin
Critical Vulnerability
privilege escalation
account takeover
unpatched
23 July, 2025
Account Takeover Vulnerability Affecting Over 400K Installations Patched in Post SMTP Plugin
0day
Critical Vulnerability
account takeover
16 July, 2025
Account Takeover Vulnerability Patched in Password Policy Manager Plugin
Critical Vulnerability
account takeover
9 June, 2025
Account Takeover Vulnerability in PayU CommercePro Plugin
Critical Vulnerability
account takeover
12 December, 2024
Multiple Critical Vulnerabilities Patched in Woffice Theme
Critical Vulnerability
privilege escalation
account takeover
theme
ENVATO
14 November, 2024
Critical Account Takeover Patched in Really Simple Security Plugin
Critical Vulnerability
account takeover
Really Simple Security
5 September, 2024
Critical Account Takeover Vulnerability Patched in LiteSpeed Cache Plugin
Critical Vulnerability
account takeover
LiteSpeed Cache
22 May, 2024
Critical Vulnerability Patched in UserPro Plugin
Critical Vulnerability
privilege escalation
account takeover
UserPro
14 May, 2024
Critical Vulnerabilities Found in XStore Theme and Plugin
Critical Vulnerability
account takeover
php object injection
SQL Injection
arbitrary option update
XStore
24 August, 2023
Critical Vulnerabilities Patched in Jupiter X Core Plugin
Jupiter X
Critical Vulnerability
arbitrary file upload
account takeover
Load more
Monthly security advice
Get the latest WordPress security intelligence delivered to your inbox.
NEW
: Get started with 5 bite-sized security lessons.
Email Signup
Email
Subscribe
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
Compliance (CRA)
For researchers
Bug bounty
Log in
Guidelines
Leaderboard
Learn
Discord
Resources
Vulnerability database
Whitepaper 2025
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2025
Patchstack
DPA
Privacy Policy
Terms & Conditions
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
Compliance (CRA)
For researchers
Bug bounty
Log in
Guidelines
Leaderboard
Learn
Discord
Resources
Vulnerability database
Whitepaper 2025
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
Looks like your browser is blocking our support chat widget. Turn off adblockers and reload the page.
Reload page
close
chevron-down
bars
cross
menu
