Automattic

Security Scorecard

Score

67C

Total CVEs

214

Patch Rate

47%

101 patched

Avg Response

40d

days to patch

Critical Gaps

0

exploitable, no detection

Severity Breakdown

Critical10
High29
Medium175
Low0

Patch Status

Patched101 (47%)
Partial/Workaround1 (0%)
Unpatched112 (52%)

CVEs (273)

CVE IDTitleSeverityScoreDaysPatch
CVE-2026-1053Ivory Search VulnerabilityMedium4.4-Patched
CVE-2026-1400AI Engine VulnerabilityHigh7.2-Patched
CVE-2026-1060CVE-2026-1060Medium5.3-Patched
CVE-2026-0807Frontis Blocks Plugin XSSHigh7.2-Patched
CVE-2026-1081Wordpress Plugin XSSMedium4.3-Patched
CVE-2026-1097Wordpress Plugin XSSMedium6.4-Patched
CVE-2026-1099WordPress Plugin XSSMedium6.4-Patched
CVE-2026-1103AIKTP Plugin VulnerabilityMedium5.4-Patched
CVE-2026-1191CVE-2026-1191Medium4.40dUnpatched
CVE-2026-1266Postalicious Plugin VulnerabilityMedium4.4-Patched