Skip to main content
JavaScript is disabled in your browser. Please enable JavaScript for a better experience.
Pricing
Solutions
WordPress security
Enterprise API
Managed VDP
Bug Bounty
Plugin auditing
Vulnerability database
Login
$event.target.closest('button').nextElementSibling.querySelector('.oxy-site-navigation__mobile-close-wrapper > button').focus() )" aria-label="Open navigation menu" :aria-expanded="rootOpen" x-ref="openButton">
$refs.openButton.focus() )" x-init="menu = [{'ID':19943,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2024-12-13 14:11:25','post_content':'','post_title':'Pricing','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'pricing-2','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=19943','menu_order':1,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':19943,'menu_item_parent':'0','object_id':'19943','object':'custom','type':'custom','type_label':'Custom Link','title':'Pricing','url':'\/pricing\/','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9674,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2022-03-03 08:57:59','post_content':'','post_title':'Solutions','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'solutions-2','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9674','menu_order':2,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9674,'menu_item_parent':'0','object_id':'9674','object':'custom','type':'custom','type_label':'Custom Link','title':'Solutions','url':'#!','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':13562,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2023-05-05 05:23:43','post_content':'','post_title':'WordPress security','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'13562','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=13562','menu_order':3,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':13562,'menu_item_parent':'9674','object_id':'13440','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/wordpress-security\/','title':'WordPress security','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':16873,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2024-02-16 07:20:20','post_content':'','post_title':'Enterprise API','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'enterprise-api','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=16873','menu_order':4,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':16873,'menu_item_parent':'9674','object_id':'14712','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/for-hosts\/','title':'Enterprise API','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':18973,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2024-09-10 14:41:32','post_content':'','post_title':'Managed VDP','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'managed-vdp','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=18973','menu_order':5,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':18973,'menu_item_parent':'9674','object_id':'18393','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/for-plugins\/','title':'Managed VDP','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':18975,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2024-09-10 14:43:02','post_content':' ','post_title':'','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'18975','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=18975','menu_order':6,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':18975,'menu_item_parent':'9674','object_id':'16699','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/bug-bounty\/','title':'Bug Bounty','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':16728,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2024-01-25 12:48:02','post_content':'','post_title':'Plugin auditing','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'plugin-auditing','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=16728','menu_order':7,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':16728,'menu_item_parent':'9674','object_id':'13739','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/auditing\/','title':'Plugin auditing','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9673,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2022-03-03 08:40:22','post_content':'','post_title':'Vulnerability database','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'9673','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9673','menu_order':8,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9673,'menu_item_parent':'9674','object_id':'3349','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/database\/','title':'Vulnerability database','target':'_blank','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9663,'post_author':'9','post_date':'2024-12-13 14:11:25','post_date_gmt':'2022-03-02 06:00:36','post_content':'','post_title':'Login','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'login-2','to_ping':'','pinged':'','post_modified':'2024-12-13 14:11:25','post_modified_gmt':'2024-12-13 14:11:25','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9663','menu_order':9,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9663,'menu_item_parent':'0','object_id':'9663','object':'custom','type':'custom','type_label':'Custom Link','title':'Login','url':'https:\/\/app.patchstack.com\/login','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''}];" x-data="{ useCtaStyles: 'false', howManyCtas: '1' }">
Start trial
Latest
Interview
WordPress Security
Virtual Patches
Bug bounty
WordPress Security 101
WordPress how-to's
Plugin recommendations
Security advice
Security advisories
Patchstack news
Patchstack how-to's
privilege escalation
Author's position will be here
privilege escalation
Latest
WordPress Security 101
Plugin recommendations
Security advisories
Patchstack news
Case studies
Bug bounty
Search for:
23 December, 2024
Multiple Critical Vulnerabilities Patched in WPLMS and VibeBP Plugins
arbitrary file upload
theme
SQL Injection
ENVATO
Critical Vulnerability
privilege escalation
12 December, 2024
Multiple Critical Vulnerabilities Patched in Woffice Theme
Critical Vulnerability
privilege escalation
account takeover
theme
ENVATO
5 December, 2024
Unauthenticated Privilege Escalation Vulnerability Patched in Sweet Date Theme
Critical Vulnerability
privilege escalation
ENVATO
29 October, 2024
Rare Case of Privilege Escalation Patched in LiteSpeed Cache Plugin
privilege escalation
LiteSpeed Cache
zeroday
17 October, 2024
Critical Vulnerabilities in Ultimate Membership Pro Plugin
privilege escalation
php object injection
23 September, 2024
Privilege Escalation Vulnerability Patched in Houzez Theme
Houzez
privilege escalation
theme
21 August, 2024
Critical Privilege Escalation in LiteSpeed Cache Plugin Affecting 5+ Million Sites
Critical Vulnerability
privilege escalation
LiteSpeed Cache
zeroday
6 June, 2024
Multiple Vulnerabilities in WooCommerce Amazon Affiliates Plugin
SQL Injection
arbitrary option update
WZone
ENVATO
privilege escalation
22 May, 2024
Critical Vulnerability Patched in UserPro Plugin
Critical Vulnerability
privilege escalation
account takeover
UserPro
7 May, 2024
High Priority Vulnerabilities Patched in Uncode Core Plugin
plugin
privilege escalation
Uncode
arbitrary file deletion
4 April, 2024
Unpatched Authenticated RCE in Oxygen and Breakdance Builder
privilege escalation
rce
oxygen
breakdance
remote code execution
12 December, 2023
Multiple Vulnerabilities Patched in Themify Ultra Theme
theme
themify
settings change
privilege escalation
arbitrary file upload
php object injection
1
2
Next »
Load more
Weekly security advice
Get the latest WordPress security intelligence delivered to your inbox.
NEW
: Get started with 5 bite-sized security lessons.
Email Signup
Email
Subscribe
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
For researchers
Bug bounty
Log in
Guidelines
Learn
Discord
Resources
Vulnerability database
Whitepaper 2024
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2024
Patchstack
DPA
Privacy Policy
Terms & Conditions
Website security
Pricing
For WordPress
For WooCommerce
For agencies
API for hosts
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
For researchers
Bug bounty
Log in
Guidelines
Learn
Discord
Resources
Vulnerability database
Whitepaper 2024
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2024
Patchstack
DPA
Privacy Policy
Terms & Conditions
This website uses cookies.
Learn more.
Looks like your browser is blocking our support chat widget. Turn off adblockers and reload the page.
Reload page
close
chevron-down
bars
cross
menu