Automattic (WordPress)
Security Scorecard
Score
71C
Total CVEs
78
Patch Rate
51%
40 patched
Avg Response
-
days to patch
Critical Gaps
0
exploitable, no detection
Severity Breakdown
Critical2
High14
Medium62
Low0
Patch Status
Patched40 (51%)
Partial/Workaround0 (0%)
Unpatched38 (49%)
CVEs (100)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-14476 | - | N/A | - | 2d | Unpatched |
| CVE-2025-14385 | - | N/A | - | 0d | Unpatched |
| CVE-2025-14061 | - | N/A | - | 0d | Unpatched |
| CVE-2025-14054 | - | N/A | - | 0d | Unpatched |
| CVE-2026-0604 | FastDup Vulnerability | N/A | - | - | Patched |
| CVE-2025-15001 | WordPress Plugin XSS | N/A | - | - | Patched |
| CVE-2025-13766 | MasterStudy LMS WordPress Plugin Vulnerability | N/A | - | - | Patched |
| CVE-2025-13493 | WordPress Plugin XSS | N/A | - | - | Patched |
| CVE-2025-13847 | PhotoFade Plugin XSS | N/A | - | - | Patched |
| CVE-2025-14110 | WP Js List Pages Shortcodes Plugin XSS | N/A | - | - | Patched |