Pricing
WordPress security
Instantly fix and mitigate vulnerabilities
Plugin auditing
Paid auditing for WordPress vendors
Managed VDP
Start a security program for your plugin
Bug Bounty
Join the community and earn bounties
Enterprise API
At scale monitoring and vPatching for hosts
Vulnerability database
The latest WordPress security intelligence
Login

Report new vulnerability

See guidelines

Has this vulnerability already been reported to another program?

If yes, Patchstack will only add it to the database, and not assign CVE nor process it in the bounty program.

Yes

Submitter details

Researcher

E-mail

Website (optional)

Component type

WordPress plugin

WordPress theme

WordPress core

Component details

Component name

Component slug

Component link

Vulnerable version

OWASP 2021: TOP 10

Vulnerability class

Vulnerability type

Pre-requisite

Please select the lowest possible user role needed to recreate the vulnerability.

Unauthenticated

Subscriber

Contributor

Author

Editor

Administrator

Super admin

Shop manager

Customer

Custom role (optional)

Vulnerability details

Short description

Markdown is supported. Tip: end a line with two or more spaces for a line-break, or soft-return

How to reproduce

Markdown is supported. Tip: end a line with two or more spaces for a line-break, or soft-return

Additional information (optional)

Markdown is supported. Tip: end a line with two or more spaces for a line-break, or soft-return

Attach files

You can attach 5 files up to 100MB (source code, component files, video proof etc.

I have read the Submission guidelines and accept the Terms of services & Privacy policy.

Protection

Pricing
Wordpress
For agencies
Documentation

Solutions

WordPress security
Plugin auditing
Managed VDP
Bug bounty
Intelligence (API)

Bug bounty

Leaderboard
Security programs
Guidelines
Report

Resources

Vulnerability Database
Vulnerability Statistics
Whitepaper 2022
Articles
Join Discord

Patchstack

About
Store New
Careers
Media kit
LinkedIn
Facebook
X