Pricing
Case studies
Login
Start trial
The leading open source vulnerability database
Instantly mitigate vulnerabilities in WordPress websites with Patchstack.
See pricing
Rated 4.9
Total
38,440
Mitigations
Mitigation rules
14,079
No official fix
10,959
In triage
1,232
Published soon
32
Stats
WordPress stats
Search
Everything
Vulnerabilities
Priority
CVSS
0
10
Mitigation available
Exploited
Clear
Affected software | Vulnerability
Risk
Disclosed
PixelYourSite – Your smart PIXEL (TAG) Manager
<= 11.2.0.1
Cross Site Scripting (XSS) vulnerability
7.1
1 hour ago
PixelYourSite – Your smart PIXEL (TAG) Manager
<= 11.2.0
Unauthenticated Stored Cross-Site Scripting vulnerability
7.1
3 hours ago
Frontend File Manager
<= 23.5
Unauthenticated Arbitrary Email Sending vulnerability
5.3
3 hours ago
Paytium
<= 4.3.7
Missing Authorization in 'create_mollie_account' vulnerability
7.1
7 hours ago
MP-Ukagaka
<= 1.5.2
Reflected Cross-Site Scripting vulnerability
7.1
7 hours ago
Paytium
<= 4.3.7
Missing Authorization in 'create_mollie_profile' vulnerability
7.1
7 hours ago
Super Page Cache for Cloudflare
<= 5.2.2
Unauthenticated Stored Cross-Site Scripting via Activity Log vulnerability
7.1
7 hours ago
Geo Widget
<= 1.0
Reflected Cross-Site Scripting vulnerability
7.1
7 hours ago
Address Bar Ads
<= 1.0.0
Reflected Cross-Site Scripting vulnerability
7.1
8 hours ago
StyleBidet
<= 1.0.0
Reflected Cross-Site Scripting vulnerability
7.1
8 hours ago
WP Maps
<= 4.8.6
Authenticated (Subscriber+) Limited Local File Inclusion vulnerability
8.8
8 hours ago
Super Simple Contact Form
<= 1.6.2
Reflected Cross-Site Scripting via 'sscf_name' Parameter vulnerability
7.1
8 hours ago
Zarinpal Gateway
<= 5.0.16
Improper Access Control to Payment Status Update vulnerability
7.7
8 hours ago
WowRevenue
<= 2.1.3
Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation/Activation vulnerability
8.8
8 hours ago
Build App Online
<= 1.0.22
Account Takeover via Weak Password Reset Mechanism vulnerability
8.1
9 hours ago
EventPrime
<= 4.2.8.4
Missing Authorization to Unauthenticated Image Upload via 'ep_upload_file_media' AJAX Endpoint vulnerability
5.3
16 hours ago
Forminator
<= 1.50.2
WordPress Forminator Forms - Contact Form, Payment Form & Custom Form Builder plugin <= 1.50.2 - Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
5.9
17 hours ago
RegistrationMagic
< 6.0.7.2
Subscriber+ Form Creation vulnerability
4.3
17 hours ago
WP-Members
<= 3.4.8
Missing Authorization to Sensitive Information Exposure vulnerability
6.5
17 hours ago
Easy Social Feed
<= 6.5.2
Missing Authorization to Settings Modification vulnerability
4.3
20 hours ago
Load more