Issue Specified column "epssScore" is not in the row

[MariuszB]

Server operating system version

AlmaLinux 9.4

Plesk version and microupdate number

18.0.77 #2

When I try to check security on WP Toolkit for all domain I get something like this:

n.forEach is not a function. (In 'n.forEach((n=>{if(void 0!==i&&i!==n.id)return;const s={installationId:n.id,instanceDisplayTitle:n.displayTitle};e.push(s.installationId),t.push(...n.core.vulnerabilities.map((e=>Object.assign({id:e.id,title:e.title,description:e.description,cvssScore:e.cvssScore,riskRank:e.riskRank,providers:e.providers,disclosedAt:e.disclosedAt,exploited:e.exploited,directUrl:e.directUrl,mitigations:e.mitigations.map((e=>Object.assign({},e))),cve:e.cve,fixedIn:e.fixedIn,assetType:jx,assetId:n.id,assetSlug:null,assetTitle:null,assetVersion:n.core.version,assetHasUpdates:!!n.core.availableMinorVersion,assetUpdateVersion:n.core.availableMinorVersion,assetIsActive:!0},s)))),n.plugins.forEach((e=>{e.vulnerabilities.length>0&&t.push(...e.vulnerabilities.map((t=>Object.assign({id:t.id,title:t.title,description:t.description,cvssScore:t.cvssScore,riskRank:t.riskRank,providers:t.providers,disclosedAt:t.disclosedAt,exploited:t.exploited,directUrl:t.directUrl,mitigations:t.mitigations.map((e=>Object.assign({},e))),cve:t.cve,fixedIn:t.fixedIn,assetType:Cx,assetId:e.slug,assetSlug:e.slug,assetTitle:e.title,assetVersion:e.version,assetHasUpdates:!!e.availableVersion,assetUpdateVersion:e.availableVersion,assetIsActive:e.status},s))))})),n.themes.forEach((e=>{e.vulnerabilities.length>0&&t.push(...e.vulnerabilities.map((t=>Object.assign({id:t.id,title:t.title,description:t.description,cvssScore:t.cvssScore,riskRank:t.riskRank,providers:t.providers,disclosedAt:t.disclosedAt,exploited:t.exploited,directUrl:t.directUrl,mitigations:t.mitigations.map((e=>Object.assign({},e))),cve:t.cve,fixedIn:t.fixedIn,assetType:Ix,assetId:e.slug,assetSlug:e.slug,assetTitle:e.title,assetVersion:e.version,assetHasUpdates:!!e.availableVersion,assetUpdateVersion:e.availableVersion,assetIsActive:e.status},s))))}))}))', 'n.forEach' is undefined)

In panel log:

[2026-04-28 08:39:04.159] 3414177:69f056082157c ERR [panel] Specified column "epssScore" is not in the row:
0: /usr/local/psa/admin/plib/vendor/plesk/zf1/library/Zend/Db/Table/Row/Abstract.php:179
Zend_Db_Table_Row_Abstract->__get(string 'epssScore')
1: /usr/local/psa/admin/plib/modules/wp-toolkit/library/Db/Row/Vulnerability.php:365
PleskExt\WpToolkit\Db\Row\Vulnerability->getEpssScore()
2: /usr/local/psa/admin/plib/modules/wp-toolkit/library/Feature/Vulnerability/Model/Vulnerability.php:139
PleskExt\WpToolkit\Feature\Vulnerability\Model\Vulnerability->getEpssScore()
3: /usr/local/psa/admin/plib/modules/wp-toolkit/library/Api/Vulnerabilities/Responses/Vulnerability.php:126
PleskExt\WpToolkit\Api\Vulnerabilities\Responses\Vulnerability->jsonSerialize()
4: :
json_encode(object of type PleskExt\WpToolkit\Api\Vulnerabilities\Responses\InstallationVulnerabilityStatus, integer '6291456')
5: /usr/local/psa/admin/plib/modules/wp-toolkit/library/Api/Helpers/ResponseHelper.php:50
PleskExt\WpToolkit\Api\Helpers\ResponseHelper::{closureleskExt\WpToolkit\Api\Helpers\ResponseHelper::streamCollectionAsJsonResponse():43}()
6: :
Generator->next()
7: /usr/local/psa/admin/plib/modules/wp-toolkit/vendor/guzzlehttp/psr7/src/Utils.php:283
WPToolkitDependenciesIsolationPrefix\GuzzleHttp\Psr7\Utils::{closure:WPToolkitDependenciesIsolationPrefix\GuzzleHttp\Psr7\Utils::streamFor():278}(integer '8192')
8: /usr/local/psa/admin/plib/modules/wp-toolkit/vendor/guzzlehttp/psr7/src/PumpStream.php:139
WPToolkitDependenciesIsolationPrefix\GuzzleHttp\Psr7\PumpStream->pump(integer '8192')
9: /usr/local/psa/admin/plib/modules/wp-toolkit/vendor/guzzlehttp/psr7/src/PumpStream.php:111
WPToolkitDependenciesIsolationPrefix\GuzzleHttp\Psr7\PumpStream->read(integer '8192')
10: /usr/local/psa/admin/plib/modules/wp-toolkit/vendor/laminas/laminas-httphandlerrunner/src/Emitter/SapiStreamEmitter.php:58
WPToolkitDependenciesIsolationPrefix\Laminas\HttpHandlerRunner\Emitter\SapiStreamEmitter->emitBody(object of type WPToolkitDependenciesIsolationPrefix\Nyholm\Psr7\Response)
11: /usr/local/psa/admin/plib/modules/wp-toolkit/vendor/laminas/laminas-httphandlerrunner/src/Emitter/SapiStreamEmitter.php:38
WPToolkitDependenciesIsolationPrefix\Laminas\HttpHandlerRunner\Emitter\SapiStreamEmitter->emit(object of type WPToolkitDependenciesIsolationPrefix\Nyholm\Psr7\Response)
12: /usr/local/psa/admin/plib/modules/wp-toolkit/library/Api/WordPressToolkitApi.php:20
PleskExt\WpToolkit\Api\WordPressToolkitApi::handleRequestAndEmitResponse()
13: /usr/local/psa/admin/plib/modules/wp-toolkit/controllers/V1Controller.php:19
V1Controller->__call(string 'vulnerabilitiesCheckerAction', array)
14: /usr/local/psa/admin/plib/vendor/plesk/zf1/library/Zend/Controller/Action.php:518
Zend_Controller_Action->dispatch(string 'vulnerabilitiesCheckerAction')
15: /usr/local/psa/admin/plib/vendor/plesk/zf1/library/Zend/Controller/Dispatcher/Standard.php:308
Zend_Controller_Dispatcher_Standard->dispatch(object of type Zend_Controller_Request_Http, object of type Zend_Controller_Response_Http)
16: /usr/local/psa/admin/plib/vendor/plesk/zf1/library/Zend/Controller/Front.php:954
Zend_Controller_Front->dispatch()
17: /usr/local/psa/admin/plib/pm/Application.php:87
pm_Application->run()
18: /usr/local/psa/admin/plib/modules/wp-toolkit/library/Application/Plesk/PleskApplication.php:39
PleskExt\WpToolkit\Application\Plesk\PleskApplication->run()
19: /usr/local/psa/admin/htdocs/modules/wp-toolkit/index.php:20
[2026-04-28 08:39:04.162] 3414177:69f056082157c ERR [panel] Specified column "epssScore" is not in the row
[2026-04-28 08:39:04.195] 3415508:69f05608215d8 ERR [extension/wp-toolkit] Internal Server Error: Specified column "epssScore" is not in the row

I tried plesk reapir db and plesk repair installation without success.

 

[Sebahat.hadzhi]

Hi, @MariuszB . Could you please confirm the WP Toolkit version running on the server (Plesk panel > Extensions > My Extensions)? Thank you in advance.

 

[MariuszB]

It's 6.10.1-10323

 

[Sebahat.hadzhi]

@MariuszB , thank you for your patience up to this point. According to our team, most likely, something went wrong during the installation of WP Toolkit, and the migration that adds the epssScore column to the Vulnerabilities table was not applied. Could you please verify the following via SSH:

1. Connect to the WP Toolkit SQLite database:

sqlite3 /usr/local/psa/var/modules/wp-toolkit/wp-toolkit.sqlite3

2. Check the schema of the Vulnerabilities table:

.schema Vulnerabilities

3. Additionally, you can check the PhinxMigrations table:

SELECT * FROM PhinxMigrations WHERE version = '20251209110750';

If the epssScore column is missing, it means the migration was not applied during installation.

The simplest solution is to reinstall the same version of WP Toolkit over the existing one. You can do this using the following command:

plesk bin extension --install-url https://ext.plesk.com/packages/d5b021cb-4536-4666-b728-cd48629dd788-wp-toolkit/download?6.10.1-10323

This command will not remove the extension. It will simply re-run the installation procedures, including the required migrations.

After that, please check the Vulnerabilities table and the PhinxMigrations table again to confirm that the issue is resolved.