Automattic (WordPress)

Security Scorecard

Score

71C

Total CVEs

78

Patch Rate

51%

40 patched

Avg Response

-

days to patch

Critical Gaps

0

exploitable, no detection

Severity Breakdown

Critical2
High14
Medium62
Low0

Patch Status

Patched40 (51%)
Partial/Workaround0 (0%)
Unpatched38 (49%)

CVEs (100)

CVE IDTitleSeverityScoreDaysPatch
CVE-2025-14980BetterDocs Plugin VulnerabilityN/A--Patched
CVE-2025-14657Eventin VulnerabilityN/A--Patched
CVE-2025-13900WP Popup Magic VulnerabilityN/A-0dUnpatched
CVE-2025-13862Menu Card Plugin VulnerabilityN/A--Patched
CVE-2025-67983WP Stats Manager XSSN/A-36dUnpatched
CVE-2025-60079Parallax Section Block VulnerabilityN/A-34dUnpatched
CVE-2025-64231Rtfwcfp-wordpress-contact-form-7-pdf-google-sheet-database-vulnerabilityN/A-34dUnpatched
CVE-2025-66080WP Cookie Notice GDPR CCPA ePrivacy Consent VulnerabilityN/A-22dUnpatched
CVE-2025-49345WP-EasyArchives CSRF VulnerabilityN/A-21dUnpatched
CVE-2025-62758Funnelforms Free XSS VulnerabilityN/A-21dUnpatched