Skip to main content
JavaScript is disabled in your browser. Please enable JavaScript for a better experience.
Pricing
Solutions
WordPress security
Enterprise API
Managed VDP
Bug Bounty
Plugin auditing
Vulnerability database
Login
$event.target.closest('button').nextElementSibling.querySelector('.oxy-site-navigation__mobile-close-wrapper > button').focus() )" aria-label="Open navigation menu" :aria-expanded="rootOpen" x-ref="openButton">
$refs.openButton.focus() )" x-init="menu = [{'ID':13478,'post_author':'9','post_date':'2024-12-02 12:44:11','post_date_gmt':'2023-05-02 16:02:06','post_content':'','post_title':'Pricing','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'pricing','to_ping':'','pinged':'','post_modified':'2024-12-02 12:44:11','post_modified_gmt':'2024-12-02 12:44:11','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=13478','menu_order':1,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':13478,'menu_item_parent':'0','object_id':'13110','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/pricing\/','title':'Pricing','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9674,'post_author':'9','post_date':'2024-12-02 12:44:11','post_date_gmt':'2022-03-03 08:57:59','post_content':'','post_title':'Solutions','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'solutions-2','to_ping':'','pinged':'','post_modified':'2024-12-02 12:44:11','post_modified_gmt':'2024-12-02 12:44:11','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9674','menu_order':2,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9674,'menu_item_parent':'0','object_id':'9674','object':'custom','type':'custom','type_label':'Custom Link','title':'Solutions','url':'#!','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':13562,'post_author':'9','post_date':'2024-12-02 12:44:11','post_date_gmt':'2023-05-05 05:23:43','post_content':'','post_title':'WordPress security','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'13562','to_ping':'','pinged':'','post_modified':'2024-12-02 12:44:11','post_modified_gmt':'2024-12-02 12:44:11','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=13562','menu_order':3,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':13562,'menu_item_parent':'9674','object_id':'13440','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/wordpress-security\/','title':'WordPress security','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':16873,'post_author':'9','post_date':'2024-12-02 12:44:11','post_date_gmt':'2024-02-16 07:20:20','post_content':'','post_title':'Enterprise API','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'enterprise-api','to_ping':'','pinged':'','post_modified':'2024-12-02 12:44:11','post_modified_gmt':'2024-12-02 12:44:11','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=16873','menu_order':4,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':16873,'menu_item_parent':'9674','object_id':'14712','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/for-hosts\/','title':'Enterprise API','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':18973,'post_author':'9','post_date':'2024-12-02 12:44:11','post_date_gmt':'2024-09-10 14:41:32','post_content':'','post_title':'Managed VDP','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'managed-vdp','to_ping':'','pinged':'','post_modified':'2024-12-02 12:44:11','post_modified_gmt':'2024-12-02 12:44:11','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=18973','menu_order':5,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':18973,'menu_item_parent':'9674','object_id':'18393','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/for-plugins\/','title':'Managed VDP','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':18975,'post_author':'9','post_date':'2024-12-02 12:44:11','post_date_gmt':'2024-09-10 14:43:02','post_content':' ','post_title':'','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'18975','to_ping':'','pinged':'','post_modified':'2024-12-02 12:44:11','post_modified_gmt':'2024-12-02 12:44:11','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=18975','menu_order':6,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':18975,'menu_item_parent':'9674','object_id':'16699','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/bug-bounty\/','title':'Bug Bounty','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':16728,'post_author':'9','post_date':'2024-12-02 12:44:11','post_date_gmt':'2024-01-25 12:48:02','post_content':'','post_title':'Plugin auditing','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'plugin-auditing','to_ping':'','pinged':'','post_modified':'2024-12-02 12:44:11','post_modified_gmt':'2024-12-02 12:44:11','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=16728','menu_order':7,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':16728,'menu_item_parent':'9674','object_id':'13739','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/auditing\/','title':'Plugin auditing','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9673,'post_author':'9','post_date':'2024-12-02 12:44:11','post_date_gmt':'2022-03-03 08:40:22','post_content':'','post_title':'Vulnerability database','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'9673','to_ping':'','pinged':'','post_modified':'2024-12-02 12:44:11','post_modified_gmt':'2024-12-02 12:44:11','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9673','menu_order':8,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9673,'menu_item_parent':'9674','object_id':'3349','object':'page','type':'post_type','type_label':'Page','url':'https:\/\/patchstack.com\/database\/','title':'Vulnerability database','target':'_blank','attr_title':'','description':'','classes':['','menu-item','menu-item-type-post_type','menu-item-object-page'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''},{'ID':9663,'post_author':'9','post_date':'2024-12-02 12:44:11','post_date_gmt':'2022-03-02 06:00:36','post_content':'','post_title':'Login','post_excerpt':'','post_status':'publish','comment_status':'closed','ping_status':'closed','post_password':'','post_name':'login-2','to_ping':'','pinged':'','post_modified':'2024-12-02 12:44:11','post_modified_gmt':'2024-12-02 12:44:11','post_content_filtered':'','post_parent':0,'guid':'https:\/\/patchstack.com\/?p=9663','menu_order':9,'post_type':'nav_menu_item','post_mime_type':'','comment_count':'0','filter':'raw','db_id':9663,'menu_item_parent':'0','object_id':'9663','object':'custom','type':'custom','type_label':'Custom Link','title':'Login','url':'https:\/\/app.patchstack.com\/login','target':'','attr_title':'','description':'','classes':['','menu-item','menu-item-type-custom','menu-item-object-custom'],'xfn':'','current':false,'current_item_ancestor':false,'current_item_parent':false,'menu_image':''}];" x-data="{ useCtaStyles: 'false', howManyCtas: '1' }">
Start FREE
Latest
WordPress how-to's
Plugin recommendations
Interview
WordPress Security
Virtual Patches
Bug bounty
WordPress Security 101
Security advice
Security advisories
Patchstack news
Patchstack how-to's
ssrf
Author's position will be here
ssrf
Latest
WordPress Security 101
Plugin recommendations
Security advisories
Patchstack news
Case studies
Bug bounty
Search for:
17 May, 2024
Exploring the Unknown: Beneath the Surface of Unpatched WordPress SSRF
WordPress core
ssrf
19 March, 2024
Critical Vulnerabilities Patched in WordPress Automatic Plugin
Critical Vulnerability
ssrf
SQL Injection
Automatic
Arbitrary File Download
10 August, 2023
Multiple High and Critical Vulnerabilities in Avada Theme and Plugin
avada
xss
rce
ssrf
sqli
Load more
Weekly security advice
Get the latest WordPress security intelligence delivered to your inbox.
NEW
: Get started with 5 bite-sized security lessons.
Email Signup
Email
Subscribe
Website security
Pricing
For WordPress
For WooCommerce
For agencies
For hosts
API
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
For researchers
Bug bounty
Log in
Guidelines
Learn
Discord
Resources
Vulnerability database
Whitepaper 2024
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Affiliates
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2024
Patchstack
DPA
Privacy Policy
Terms & Conditions
Website security
Pricing
For WordPress
For WooCommerce
For agencies
For hosts
API
Documentation
Log in
For plugin devs
Managed VDP
Log in
Active programs
Security auditing
For researchers
Bug bounty
Log in
Guidelines
Learn
Discord
Resources
Vulnerability database
Whitepaper 2024
Vulnerability statistics
Case studies
Articles
Patchstack
About
Careers
Affiliates
Merch store
Media kit
Socials
LinkedIn
Facebook
X
© 2024
Patchstack
DPA
Privacy Policy
Terms & Conditions
This website uses cookies.
Learn more.
Looks like your browser is blocking our support chat widget. Turn off adblockers and reload the page.
Reload page
close
chevron-down
bars
cross
menu