Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
35,996
Mitigations
Mitigation rules
13,254
No official fix
10,106
In triage
1,386
Published soon
13
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
URL Shortify
<= 1.11.3
Reflected Cross-Site Scripting vulnerability
7.1
5 hours ago
URL Shortify
<= 1.11.2
Reflected Cross-Site Scripting vulnerability
7.1
5 hours ago
Overstock Affiliate Links
<= 1.1
Reflected Cross-Site Scripting via $_SERVER['PHP_SELF'] vulnerability
7.1
5 hours ago
Print Invoice & Delivery Notes for WooCommerce
<= 5.8.0
Unauthenticated Remote Code Execution vulnerability
10
8 hours ago
PhastPress
<= 3.7
Unauthenticated Arbitrary File Read via Null Byte Injection vulnerability
7.5
9 hours ago
Ocean Modal Window
< 2.3.3
Editor+ Remote Code Execution vulnerability
9.1
9 hours ago
WP Hallo Welt
<= 1.4.
Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability
7.1
9 hours ago
Attachments Handler
<= 1.1.7
Reflected Cross-Site Scripting vulnerability
7.1
9 hours ago
Flex Store Users
<= 1.1.0
Unauthenticated Privilege Escalation vulnerability
9.8
10 hours ago
File Uploader for WooCommerce
<= 1.0.3
Unauthenticated Arbitrary File Upload via add-image-data vulnerability
10
10 hours ago
WP JobHunt
<= 7.7
Authenticated (Candidate+) Insecure Direct Object Reference vulnerability
4.3
20 hours ago
WP JobHunt
<= 7.7
Missing Authorization to Authenticated (Candidate+) Stored Cross-Site Scripting via 'status' vulnerability
6.5
21 hours ago
Nika
<= 1.2.14
Local File Inclusion vulnerability
7.5
1 day ago
Diza
<= 1.3.15
Local File Inclusion vulnerability
7.5
1 day ago
Responsive Posts Carousel Pro
<= 15.2
Cross Site Scripting (XSS) vulnerability
6.5
1 day ago
WPBulky
<= 1.1.13
SQL Injection vulnerability
7.6
1 day ago
VPSUForm
<= 3.2.24
Sensitive Data Exposure vulnerability
6.5
1 day ago
HAPPY
<= 1.0.9
Broken Access Control vulnerability
5.3
1 day ago
Chakra test
<= 1.0.1
Broken Access Control vulnerability
4.3
1 day ago
Beaver Builder
<= 2.9.4.1
Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Update vulnerability
8.1
1 day ago
Load more